Hello Pratik-A few questions

pratik gandhi · ‎01-12-2015

AD issues while migrating from cisco ACS 4.x to 5.x? AD base authentication failure

nspasov · ‎01-12-2015

Hello Pratik-

Can you share some more info? Things like:

1. Exact errors on ACS/supplicant

2. Is this for network access or device administration

3. Some screen shots

4. Overall requirements/setup, etc

Thank you for rating helpful posts!

Thank you for rating helpful posts!

pratik gandhi · ‎01-16-2015

Hello,

1)The problem initiates when IP of the OLD ACS is given to the new ACS .

2)Old ACS is 4.x, and the new ACS is 5.x

3)Requirement is both MAB authentication & AD based authentication should be succesfull.

4)MAB getting succesfully authenticated, but facing issues regarding AD.

5) Any other IP given to the new ACS, works fine.

6) Tried deleting the binding of OLD ACS IP and creating a new one.

nspasov · ‎01-16-2015

Hello Pratik-

A few questions:

1. Did you disconnect the old server to make sure that there are no conflicts?

2. Did you clear the arp-cache on your layer 3 device to ensure that the new IP-to-MAC entry is in the arp table

3. Did you join the new ACS server to AD?

4. What does the authentication logs show in ACS for the filed AD authentications

5. Post the output of the "show authentication session interface interface_name_number" of the interface with the failing dot1x authentication

Thank you for rating helpful posts!

Thank you for rating helpful posts!

Ravi Singh · ‎01-12-2015

Did you face any problem while migrating. Mostly this problem happen due to unsuccessful migration.

ACS server migration AD issue.