Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
782
Views
5
Helpful
1
Replies

ACS 4.1 failure to authenticate Windows users.

Go to solution
andrea.meconi
Level 2
Level 2

‎02-25-2013 07:36 AM - edited ‎03-10-2019 08:07 PM

Hello.

We are running Cisco Secure ACS for Windows version 4.1(1)b23p5 on a Windows 2000 member server.

Starting from today, ACS fails to authenticate users.

Using the same external user (andrea-meconi) I can verify successfull and failed authentication.

This is the AUTH.log for a genericRADIUS request...

AUTH 25/02/2013 15:30:24 I 0396 3900 External DB [NTAuthenDLL.dll]: Starting authentication for user [andrea-meconi]

AUTH 25/02/2013 15:30:24 I 0396 3900 External DB [NTAuthenDLL.dll]: Attempting Windows authentication for user andrea-meconi

AUTH 25/02/2013 15:30:24 E 0396 3900 External DB [NTAuthenDLL.dll]: Windows authentication FAILED (error 1783L)

AUTH 25/02/2013 15:30:24 I 0396 3900 External DB [ODBCAuthDll.dll]: Starting 1 odbc workers

AUTH 25/02/2013 15:30:24 I 0396 3900 External DB [ODBCAuthDll.dll]: DLL initialised OK

AUTH 25/02/2013 15:30:24 I 0571 3900 AuthenLoadLibrary: Loaded DLL for External ODBC Database

AUTH 25/02/2013 15:30:24 I 1645 3900 pvAuthenticateUser: authenticate 'andrea-meconi' against External ODBC Database

This is the log for an EAP request...

AUTH 25/02/2013 16:23:56 I 1645 4568 pvAuthenticateUser: authenticate 'venezia\andrea-meconi' against Windows NT/2000

AUTH 25/02/2013 16:23:56 I 0396 4568 External DB [NTAuthenDLL.dll]: Starting MSCHAP authentication for user [venezia\andrea-meconi]

AUTH 25/02/2013 16:23:56 I 0396 4568 External DB [NTAuthenDLL.dll]: Got WorkStation CISCO

AUTH 25/02/2013 16:23:56 I 0396 4568 External DB [NTAuthenDLL.dll]: Attempting Windows authentication for user andrea-meconi

AUTH 25/02/2013 16:23:56 I 0396 4568 External DB [NTAuthenDLL.dll]: Windows authentication SUCCESSFUL (by RVVMDCC01PW)

AUTH 25/02/2013 16:23:56 I 0396 4568 External DB [NTAuthenDLL.dll]: User mapped to ACS group id [20]

Windows AD running now on Windows 2008 server, migrating from 2003.

Any idea?

Thanks.

Andrea

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jatin Katyal
Cisco Employee
Cisco Employee

‎02-25-2013 01:06 PM

Windows authentication FAILED (error 1783L)

The above error indicates that the migration happened over night. In order to resolve this issue you need to upgrade your ACS to atleast ACS 4.2.0.124 patch 4 or above.

Supported Operating Systems section

--Windows Server 2008, Standard Edition

--Windows Server 2008, Enterprise Edition

--Japanese Windows Server 2008, Standard Edition, Service Pack 2

--Japanese Windows Server 2008, Enterprise Edition, Service Pack 2

NOTE: No version of ACS 4.x support 2008 R2. Only ACS 5.2 support it.

Regards,

Jatin Katyal


- Do rate helpful posts -

~Jatin

View solution in original post

1 Reply 1

Go to solution
Jatin Katyal
Cisco Employee
Cisco Employee

‎02-25-2013 01:06 PM

Windows authentication FAILED (error 1783L)

The above error indicates that the migration happened over night. In order to resolve this issue you need to upgrade your ACS to atleast ACS 4.2.0.124 patch 4 or above.

Supported Operating Systems section

--Windows Server 2008, Standard Edition

--Windows Server 2008, Enterprise Edition

--Japanese Windows Server 2008, Standard Edition, Service Pack 2

--Japanese Windows Server 2008, Enterprise Edition, Service Pack 2

NOTE: No version of ACS 4.x support 2008 R2. Only ACS 5.2 support it.

Regards,

Jatin Katyal


- Do rate helpful posts -

~Jatin
Customers Also Viewed These Support Documents