Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
11530
Views
5
Helpful
2
Replies

Failure Reason : 22017 DenyAccess Identity Source selected

Go to solution
adaka1adaka
Level 1
Level 1

‎11-05-2010 02:58 PM - edited ‎03-10-2019 05:33 PM

I just setup a new ACS1120 with ACS 5.1. I am able to authenticate via TACACS+/Active Directory from cisco switches but unable to authenticate using RADIUS/Active Directory from a wireless client. I get the error "Failure Reason : 22017 DenyAccess Identity Source selected" when I check the ACS5.1 log. My setting is supposed to use AD1 for the Identity Store Sequence. I do not know where the DenyAccess Identity Source is coming from.

Please help.

1 person had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
jrabinow
Level 7
Level 7

‎11-06-2010 11:39 PM

This error ocurs because the identity policy you have defined has resulted in a result of deny access.

You should review the authentication details to see which access service matched and then which idenity policy rule.

You can see this information in theuthentication details in Monitoring and Troubleshooting infromation

View solution in original post

2 Replies 2

Go to solution
jrabinow
Level 7
Level 7

‎11-06-2010 11:39 PM

This error ocurs because the identity policy you have defined has resulted in a result of deny access.

You should review the authentication details to see which access service matched and then which idenity policy rule.

You can see this information in theuthentication details in Monitoring and Troubleshooting infromation

Go to solution
adaka1adaka
Level 1
Level 1
In response to jrabinow

‎11-07-2010 06:14 PM

Thanks jrabinow. That works!

0 Helpful
Customers Also Viewed These Support Documents