Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1595
Views
0
Helpful
3
Replies

Troubleshooting/packet capture on ACS 5.5

sahrgohar
Level 1
Level 1

‎11-06-2015 08:02 AM - edited ‎03-10-2019 11:13 PM

In troubleshooting AAA authentication issues between  ACS 5.5 and Juniper Netscreen firewall, please advise how to do a 'snoop' or packet capture on the ACS server side for a specific network device address?

ACS logs output a successful authentication, however Juniper logs show rejected via TACACS server.

Labels:
0 Helpful
3 Replies 3

Aaron O'Hare
Level 1
Level 1

‎11-06-2015 10:00 AM

As far as I know there is no way to do a packet capture on ACS 5.x. Are you using TACACS+ or Radius for the authentication?

-AO
Please rate useful posts and mark answers as "correct" if applicable.

0 Helpful

sahrgohar
Level 1
Level 1
In response to Aaron O'Hare

‎11-06-2015 10:16 AM

TACACS+ 1121 appliances.

0 Helpful

Aaron O'Hare
Level 1
Level 1
In response to sahrgohar

‎11-06-2015 10:25 AM

Take a look at http://kb.juniper.net/InfoCenter/index?page=content&id=KB10191 (you will need a Juniper login)

I don't know the Juniper side well enough to help you on that side but I'd suspect its an issue on the JunOS side as ACS is indicating a successful message.

-AO
Please rate useful posts and mark answers as "correct" if applicable.

0 Helpful
Customers Also Viewed These Support Documents