Re: ACS 4.1.1.23.5 REPLICATION PROBLEMS

ochalmers · ‎03-02-2009

I upgraded two ACS SE to version 4.1.1.23.5 to solve this problem TACACS+ Command Accounting does not work.

they were working ok, but the replication between them started to fail.

these are the messages that i receive

ACS Primary: ACS 'backup' has denied replication request.

ACS Backup: Inbound database replication from ACS 'Primary' denied

please help i deeply appreciate..

ansalaza · ‎03-02-2009

Do you have an entry with Self - 127.0.0.1 on any of the Servers?

http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_tech_note09186a00808d9199.shtml#res

ochalmers · ‎03-03-2009

No, I checked the AAA Server's IP Addresses on the two servers and they've got the real ip addresses.

Any other idea??

Ivan Martinon · ‎03-03-2009

Can you check that the secondary server does not have any replication mates? make sure nothing shows up in there, also double check the ip addresses and keys, make sure they are not under any NDG (network device group) and if they are make sure the shared key is the same.

ochalmers · ‎03-04-2009

I took off the replication partner on the secondary ACS server and the replication service works again. thanks a lot.

Ivan Martinon · ‎03-04-2009

Excellent, please do rate useful posts.

sahmedshahcsd · ‎03-04-2009

Make sure you initiate the replication process on primary ACS server in order for the secondary ACS should get replicated.

Hope this helps

Regards

sshareef · ‎03-06-2009

Thanks for sharing this tip. I was initiating on secondary. so the bottom line is replication in ACS is is a push operation and not pull.