Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
18352
Views
33
Helpful
24
Replies

Active Directory diagnostic tool found issues

Go to solution
John Vierra
Cisco Employee
Cisco Employee

‎06-12-2018 08:00 AM

I have received this error message a few times and I'm trying to find out what it means and what to do about it. If I follow the instructions in the alert and manually run the test it always comes back as passing. I'm running 2.4.0.357 with patch 1.

Thanks

Alarm Name :

Active Directory diagnostic tool found issues

Details :

AcsSyslogContentAaaDiagnostics:: ACTIVE_DIRECTORY_DIAGNOSTIC_TOOL_ISSUES_FOUND need to complete

Description :

One or more Active Directory diagnostic tests failed during a scheduled run.

Severity :

Warning

Suggested Actions :

Run the Active Directory Diagnostic Tool to check current status and view details of issues. Go to External Identity Sources, Active Directory and activate from Advanced Tools.

*** This message is generated by Cisco Identity Services Engine (ISE) ***

Sent By Host : vierra-ise

8 people had this problem
0 Helpful
24 Replies 24

Go to solution
stayd
Level 1
Level 1
In response to BrandonG95

‎11-27-2022 05:16 AM

What is the status of tac case now ? Was it resolved by now ?

0 Helpful

Go to solution
Frank Lothar Weber
Level 1
Level 1
In response to BrandonG95

‎07-07-2022 12:16 AM

Error is still showing up on ISE 3.1, patch 3 .....

Go to solution
mfox
Level 1
Level 1
In response to Frank Lothar Weber

‎09-26-2022 07:17 AM

Still happening on 3.1 patch 3, but the alert can be disabled.  Go to hamburger button, System > Settings > Alarm Settings.  Under Alarm Configuration, find "Active directory diagnostic tool found issues" and edit to disable.

Go to solution
stayd
Level 1
Level 1
In response to mfox

‎11-27-2022 05:16 AM

Still same even with patch 4 on 3.1 version.

Go to solution
marco.merlo
Level 1
Level 1
In response to Frank Lothar Weber

‎01-02-2024 06:33 AM

Same issue on ISE 3.2 patch 4 ....

0 Helpful

Go to solution
Marcelo Morais
VIP
VIP
In response to marco.merlo

‎01-02-2024 03:17 PM

Hi @marco.merlo ,

 at Administration > Identity Management > External Identity Sources > select Active Diretory > select your AD > select the Node and click Diagnostic Tool button to check for the issue.

 You are also able to click the Run Test Now button to check again.

Hope this helps !!!

0 Helpful

Go to solution
kakada Atada
Level 1
Level 1
In response to Marcelo Morais

‎01-02-2024 06:54 PM

If we manual test by change to " Disabled". 

Is there any impact with ISE and AD services or not?

Thanks,

Kakada Sao
0 Helpful

Go to solution
Marcelo Morais
VIP
VIP
In response to kakada Atada

‎01-03-2024 04:10 PM

Hi @kakada Atada ,

 if you "manual disable" the Active Directory Diagnostic Tool by unchecking the Run Schedule Tests checkmark, attention to CSCvw81130 Unable to disable Active Directory Diagnostic Tool scheduled tests

CSCvw81130 00.png

 

Hope this helps !!!

0 Helpful

Go to solution
hslai
Cisco Employee
Cisco Employee
In response to marco.merlo

‎01-04-2024 05:55 PM

@marco.merlo 

Please drill-into this alarm, check the details on some of the entries and see what tests failed recorded for the alarm entry.

0 Helpful

Go to solution
Minnesotakid
Level 1
Level 1

‎01-04-2024 07:21 PM

I vaguely recall experiencing this issue back when we were on 2.6 and we were told since we had a "grandfathered in" old TACACS license in the new smart-licensing world, this alarm would get caused and it was simply an aesthetic issue (ie. false positive). Hope that helps some of you.

Customers Also Viewed These Support Documents