Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1933
Views
0
Helpful
15
Replies

ACS 4.2 not logging Failed attempts

mwesche
Level 1
Level 1

‎05-07-2008 11:50 AM - edited ‎03-10-2019 03:49 PM

I have 802.1x setup on a Catalyst 2950 switch with Cisco ACS 4.2 Radius server. Authentication and authorization for machine authentication is working fine. I see the records in the "passed authentication" cvs file on the ACS server. Problem is, when I test a random non authorized laptop by plugging in to a dot1x configured port, the authentication and authorization works by rejecting the laptop and the switch port remains unauthorized but the record is never logged in the "Failed Attempts" cvs file.

the only time I see entries in there is when I mess with the authorized computers credentials and kill thir authorizes status, they show up. I want to see when strangers wander up to a wall jack and try to gain access by seeing their attempts recorded.

Labels:
0 Helpful
15 Replies 15

mwesche
Level 1
Level 1
In response to Jagdeep Gambhir

‎05-08-2008 07:06 PM

How would the switch know? It forwards the auth request to ACS, which queries its externally configured NT domain for a valid domain computer cert.

By the fact that the computer is not a domain menmber. And how would it know that? Because of a computer cert that is issued to only domain computers when they joined the domain.

0 Helpful
Customers Also Viewed These Support Documents