Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
667
Views
0
Helpful
2
Replies

LMS 4.2.5 - Slow Homepage login with TACACS+ module enabled

Go to solution
lo.mueller
Level 1
Level 1

‎03-11-2015 03:09 AM

Hi all,

having setup TACACS+ Login module Login into Homepage takes about 80 sec.

 

Reverting back to local-Login module Login into Homepage takes about 20 sec.

 

Anybody out there able to help in Tuning TACACS+ Login module for Performance.

 

During Troubleshooting we discovered that request from LMS to TACACS+-Server (ACS)

is done after 60 sec of Login attempt, it seems that LMS slows down Login Performance here.

 

Thanks for any feedback

 

Lothar

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
lo.mueller
Level 1
Level 1

‎03-12-2015 11:59 PM

Update:

Digging deeper we discovered a DNS-Issue, dns-resover on server was configured to use two different dns-servers.

And also Prime seems to resolve hostname tacacs for ACS-Server configured in TACACS+ Login-Module -> adding an entry in /etc/hosts with IP of ACS and hostname tacacs also speeds up login-waittime from 80 sec to 20 sec.

I'm not quite sure why TACACS+ Login-Module depends so heavy on DNS?

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Ashok Kumar
Cisco Employee
Cisco Employee

‎03-12-2015 09:27 AM

Hi Lothar,

Although, this is not a very uncommon issue, but the remedies differs in each case.

You can try below things:-

1. Restart the daemon manager

2. If the windows server, check the services, these setting are never recommended to have in startup type of automatic except deamon manager, CSCW rsh/scp/syslog/tftp services.


- Ashok

******************************************************************************************************

Please rate the post or mark as correct answer as it will help others looking for similar information

******************************************************************************************************

 

 

0 Helpful

Go to solution
lo.mueller
Level 1
Level 1

‎03-12-2015 11:59 PM

Update:

Digging deeper we discovered a DNS-Issue, dns-resover on server was configured to use two different dns-servers.

And also Prime seems to resolve hostname tacacs for ACS-Server configured in TACACS+ Login-Module -> adding an entry in /etc/hosts with IP of ACS and hostname tacacs also speeds up login-waittime from 80 sec to 20 sec.

I'm not quite sure why TACACS+ Login-Module depends so heavy on DNS?

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents