06-28-2009 05:36 PM - edited 03-10-2019 04:33 PM
· After fresh install, all appears to be working, usernames work without domain qualification (domain\username), can log in with all accounts
· After an attempt to login with a pre-existing AD username, authentication fails, correct password or not
· Authentication continues to fail (fail code: Internal Error), even after restarting the tacacs service, with all usernames, except for those that have been used to log into the ACS server with domain qualification!?!
· No amount of restarts / configuration tweaks can return to âfresh installâ operation
Solved! Go to Solution.
06-29-2009 01:05 AM
This definitely sounds like a bug - anytime you see "internal error" or "unknown error" in failed attempts its an un-handled error.
You'll prob need to set logging detail level to max then do so testing and then open a tac case. The csauth log (auth.log) will be key as there will be diagnostic data from the windows external authenticator dll.
Its is an appliance you'll need to run the support option to generate a package.cab to get the log - s/w you can copy right off.
06-29-2009 01:05 AM
This definitely sounds like a bug - anytime you see "internal error" or "unknown error" in failed attempts its an un-handled error.
You'll prob need to set logging detail level to max then do so testing and then open a tac case. The csauth log (auth.log) will be key as there will be diagnostic data from the windows external authenticator dll.
Its is an appliance you'll need to run the support option to generate a package.cab to get the log - s/w you can copy right off.
06-30-2009 08:07 PM
You are right - it was a bug. After hunting down the latest patch (not easy!) this problem has been resolved. Thanks!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide