09-01-2014 06:46 AM - edited 03-10-2019 09:59 PM
Hi,
In our network, We have 3 ACS in a cluster. There is integration between ACS and AD. The devices are administered through AD accounts. If one of our ACS server loses connection with AD, the requests are not getting failover to secondary ACS. since the devices are able to reach ACS, the failover is not happening. And we are not able to manage devices in this situation. Please suggest a solution, where, when primary ACS-AD communication fails, all client requests should go to secondary ACS. Thank you.
ACS version: 5.4
Regards,
Madhan kumar G
09-02-2014 10:33 PM
Hi Madhan,
First of all try to do the following basic steps:
1. In AD section, do a test connection and let me know what does it show?
2. See the logs under reports and Monitoring section and see what error message do you see when user fails
3. check the status of the ACS services on cli by typing the following command:
#sh app stat acs
attach the output
After this
Please do the following: and attach the adagent-logs!!! for the RCA.
Here are the steps in order to turn up the right debugs and to troubleshoot this issue a little further. In my example I will be using SecureCRT, ACS version 5.3 patch 4.
Thanks!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide