cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

221
Views
0
Helpful
4
Replies
Highlighted
Beginner

ACS server migration AD issue.

AD issues while migrating from cisco ACS 4.x to 5.x? AD base authentication failure

4 REPLIES 4
Highlighted
Cisco Employee

Hello Pratik-

Can you share some more info? Things like:

1. Exact errors on ACS/supplicant

2. Is this for network access or device administration

3. Some screen shots

4. Overall requirements/setup, etc

 

Thank you for rating helpful posts!

Highlighted

Hello,

1)The problem initiates when IP of the OLD ACS is given to the new ACS . 

2)Old ACS is 4.x, and the new ACS is 5.x

3)Requirement is both MAB authentication  & AD based authentication should be succesfull.

4)MAB getting succesfully authenticated, but facing issues regarding AD.

5) Any other IP given to the new ACS, works fine.

6) Tried deleting the binding of OLD ACS IP and creating a new one.

 

 

Highlighted

Hello Pratik-

A few questions:

1. Did you disconnect the old server to make sure that there are no conflicts?

2. Did you clear the arp-cache on your layer 3 device to ensure that the new IP-to-MAC entry is in the arp table

3. Did you join the new ACS server to AD?

4. What does the authentication logs show in ACS for the filed AD authentications

5. Post the output of the "show authentication session interface interface_name_number" of the interface with the failing dot1x authentication

 

Thank you for rating helpful posts!

Highlighted
Rising star

Did you face any problem while migrating. Mostly this problem happen due to unsuccessful migration.

Content for Community-Ad