05-21-2019 08:46 PM - edited 02-21-2020 11:05 AM
Hi,
Understand that there's Failure Code 24408 for failed login attempt due to wrong password for AD account.
24408: User authentication against Active Directory failed since user has entered the wrong password
Is there any failure code I can look at for similar instance but for failed logins on local accounts instead?
Thanks!
05-21-2019 11:38 PM
Look this information :
24408 User authentication against Active Directory failed since user has entered the wrong password
=========================================================================
Authentication failure gainst AD due to account is disabled
=============================================
05-22-2019 12:29 AM
05-22-2019 12:34 PM
If the account is configured on the ACS for login. That time you will get a error code as below.
Message Text | Failed-Attempt: Authentication failed |
Failure Reason | 22040 Wrong password or invalid shared secret |
05-22-2019 09:02 PM
05-23-2019 12:22 PM
If TACACS is configured as a 1st priority and local as fall back. The error message would be 22056 Subject not found in the applicable identity store(s).
If Local as 1st priority and tacacs as second, The authentication will get drop at switch/Firewall. You won't get any logs on ACS.
10-09-2019 04:35 AM
Hello sir,
On ACS 5.8 patch 9 when we try to enable password hashing for local users on ACS authentication fails on secondary server with same error message 22040 wrong password on invalid shared secret.
Verified the password and shared secret.
Authentications work fine on primary server with hashing enabled for local users.
Tried to change the sec to primary and encountered the same issue.
Could you please share your insights.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide