Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1072
Views
3
Helpful
17
Replies

Old Cisco ACS 4.2 on Windows lock notice help!

Belisarius
Level 1
Level 1

‎09-06-2023 11:24 PM

  • Like the title says, I've been handed a system that I'll need to upgrade but I cannot for the life of me get into the Windows OS where ACS is installed and haven't a clue how to get around it. 

I have intermittent Web browser access. I can get to the admin web portal where do I disable this thing so I can get in and fix and upgrade this thing.

 

I need in. Safe mode doesn't work either. The lock screen reads: "Application functioning normally. Please use the browser to access"

 

This is a virtual machine. Access goes down I have to connect it to a workstation with a virtual serial cable that sometimes works.

 

Please help! How do I disable the lock notice and get into the OS.

Labels:
0 Helpful
17 Replies 17

balaji.bandi
Hall of Fame
Hall of Fame

‎09-07-2023 09:00 AM

ACS 4.2 EOL decade back - what is the ACS role in your network

If i were you i will install latest 5.8 on VM and Move the devices to ACS 5.8

ACS 5.8 also EOL

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

ahollifield
VIP
VIP

‎09-07-2023 09:03 AM

Oh boy.  Personally I would just rebuild from scratch on ISE.  

balaji.bandi
Hall of Fame
Hall of Fame
In response to ahollifield

‎09-07-2023 09:51 AM

@ahollifield  all companies may be not in a postion to buy ISE in the first place. and some people like to stick to version they have until it dies.

ISE future - but business approval for finance ?

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Arne Bier
VIP
VIP

‎09-07-2023 02:58 PM

They might consider trying NPS if the customer has a Windows Server environment. I am not a big fan of NPS because of its lousy operational ability - but for small environments, it gets the basic RADIUS job done. 

0 Helpful

Belisarius
Level 1
Level 1

‎09-07-2023 04:16 PM

All 

I would like to upgrade and rebuild but it's tied tightly to curriculum. Curriculum job sheets are tailored to 4.2 and I'm not allowed to move forward currently. 

 

I just need to find a way to unlock this window!

0 Helpful

Belisarius
Level 1
Level 1

‎09-07-2023 04:32 PM

Here is the lock window I need to bypass. To fix, troubleshoot and maintain. Until we are approved to upgrade.

 

Trust me. I run cisco ise 3.1. I can't wait to move to it. But we are not allowed right now.

Preview file
32391 KB
0 Helpful

Arne Bier
VIP
VIP

‎09-07-2023 04:43 PM

I have to admit I didn't work with such an old ACS system.

So you can login to the Windows Server and then immediately this thing pops up and blocks all other access to the OS?

Why is web access intermittent?

0 Helpful

Belisarius
Level 1
Level 1
In response to Arne Bier

‎09-07-2023 04:49 PM

Negative. No ability to log in. This is presented on boot and safe mode boot.

Control alt delete does not work.

0 Helpful

Belisarius
Level 1
Level 1
In response to Arne Bier

‎10-25-2024 12:40 PM

Negative. This is a locked down version. Thus you get this on boot. No ability to log in. one must only use virtual serial connections or the web connect (browse from vm)

0 Helpful

Greg Gibbs
Cisco Employee
Cisco Employee

‎09-07-2023 06:33 PM

This sounds like it might be the ACS Solution Engine. In the Installation Guide, it states:

"The operating system for the Cisco Secure ACS SE is a customized and minimized version of the Windows 2003 and Windows 2008 operating system. The ACS SE removes all extraneous services, blocks all unused ports, and otherwise prevents all other access to the ACS server system, thereby dramatically increasing the security posture of ACS."

You might try stopping/starting some of the processes from the Serial connection or rebooting it if you haven't done so already. If that all fails, you will likely have to try backing it up and reinstalling it (if you have the software). I'm not sure what kind of 'upgrade' you expect to do with this appliance (if that's what it is) as I don't believe there is anything to upgrade to. There is also no software available to download for it at this point.

As others have stated, this system has been end of life for over 10 years now, so I doubt you'll find anybody here that has seen it (much less had to troubleshoot it) for 10 years.

Belisarius
Level 1
Level 1
In response to Greg Gibbs

‎09-07-2023 07:17 PM

Greg,

This sounds like a better answer and explains alot. 

The next update of the curriculum is due soon and will be cisco ISE

 

Until then however I am required to keep this ACS server Alive.

So I guess I'm only left with virtual network wires and virtual serial connections (it's a vm). 

How does one handle connectivity issues? 

 

Like if it doesn't respond via web and I'm very limited in serial commands.

0 Helpful

Greg Gibbs
Cisco Employee
Cisco Employee
In response to Belisarius

‎09-07-2023 07:33 PM

The only thing I could suggest would be restarting the CSAdmin service (which runs the web server) from the serial connection and/or rebooting the system.

0 Helpful

Belisarius
Level 1
Level 1
In response to Greg Gibbs

‎10-25-2024 12:32 PM

Provided we can get the virtual serial to connect. I made the virtual serial pipe in vmware but it connects about 50% of the time XD

0 Helpful

ahollifield
VIP
VIP
In response to Belisarius

‎09-08-2023 04:37 AM

What do you mean by curriculum? Is someone teaching a training class or something using ACS 4.2?
0 Helpful
Customers Also Viewed These Support Documents