03-05-2018 01:54 AM - edited 02-21-2020 10:47 AM
Hello,
We got Cisco ACS 5.8 Primary and secondary servers for tacacs+ and radius.
160 Devices configured for tacacs+ all with /32 mask means total 160 device count
4 devices configured for radius, viz 2 asa and 2 wireless lan controller all with /32 mask means total 4 devices
We installed 500 base license although the ACS gives error ""Managed device count exceeded" while login to acs
Number of instance : 2
Current number of configured IP address in Network Devices: 929
Maximum number of ip address in Network devices: 500
What could be the reason ?. Although only wireless lan controller is added as radius device in the ACS the radius authentication for all wireless client machines are happens on the same acs will the acs count the wireless client / wireless AP's even though it is not configured in acs ?
Solved! Go to Solution.
03-05-2018 10:06 AM
Hi,
Just to double check, please verify the licensing page (it's in the general settings menu) and you'll see there how many NADs ACS thinks it has.
Thanks,
Octavian
03-05-2018 06:54 AM
Hi,
Didn't you just answered your question? :)
Current number of configured IP address in Network Devices: 929
It doesn't matter which devices actually use ACS for AAA functions, but how many of them you've configured.
https://communities.cisco.com/docs/DOC-64011
Thanks,
Octavian
03-05-2018 07:30 AM
Thanks Octavian for your inputs
From your link
ACS counts the number of IP addresses represented by the network devices configured under Network Resources -> Network Devices and AAA Clients. For example, a network device configured with an IP range of 10.10.10.0/24 will represent 256 devices(!) in the device count. The device count remains the same even if the actual number of devices in this subnet are fewer.
I actually configured 160 tacac + 4 radius (Total 164) under Network Resources -> Network Devices and AAA Clients although the license Error pops as Current number of configured IP address in Network Devices: 929
All deviece IP configured with /32 Mask so there is no possibility of counting enteir subnet
03-05-2018 10:06 AM
Hi,
Just to double check, please verify the licensing page (it's in the general settings menu) and you'll see there how many NADs ACS thinks it has.
Thanks,
Octavian
03-05-2018 10:59 PM
Thanks for your time. It was a typo error on the config, 2 new hosts were configured with wrong mask !.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide