TACACS+ received corrupt data from server

oguarisco · ‎07-26-2004

Hi,

I've 2 ACS 1111 (A and B) with Release 3.2 on 2 different subnets...

On the switches I've configured both the tacacs-server to use with AAA model...

but I'm registering something REALLY STRANGE...

If I use ACS B as Master and A as Backup on the configuration all is working perfectly!!!

Instead if I use ACS A as master sometimes (quite regular) the access to the network (EXEC) is insuccessful BUT AAA server logged the entry as Passed Authentication...

Doing debug on a switch I've noticed that the switch discard the TACACS-reply from the ACS due to the fact

that it receiveof corrupted data from the server...

*Mar 1 00:04:31.051: TAC+: received bad AUTHEN packet: session id = 2453325442, expected 1654260059

*Mar 1 00:04:31.051: TAC+: received corrupt data from server.

*Mar 1 00:04:31.051: TAC+: Closing TCP/IP 0x80D02974 connection to

*Mar 1 00:04:33.055: TAC+: send AUTHEN/START packet ver=192 id=221894342

It seem that ACS validate the user authentication but for unknown reason it send out corrupt data

Any idea are appreciated

Omar

wong34539 · ‎07-30-2004

Check if your device runs service pack 5 for NT on that particular device.

oguarisco · ‎08-23-2004

Hi,

Thanks for the info...

I've seen on my Appliance after connecting a Video that there was an error message Windows Style. This message was impossible to see using HTTP access and moreover Console Access...

Simply doing a cold reboot solve my issue...

Before this I've tried to restart ACS services and do a warm-reset but this doesn't solve the problem

Omar