Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
675
Views
0
Helpful
1
Replies

Context Directory Agent ip-to-user mapping missing (or being removed unexpectedly)

pavelkulakov
Level 1
Level 1

‎11-11-2016 03:00 AM - edited ‎03-12-2019 01:31 AM

Hello!

We have encountered a problem with our Identity Firewall scheme recently (it works on CDA, 4 Microsoft 2012R2 DCs and Cisco ASA as a consumer device). We've noticed that some ip-to-user mappings are missing on CDA although users are in domain and stay online. All 4 DCs are up and operational and send security log to CDA. No errors were noticed on CDA's Live Log. Finally we were able to find a couple of users that disappear from Ip-to-address mapping list for no reason. What is the condition of mapping removal from CDA and what could be the possible source of a problem?

P.S CDA ver 1.0.0.011 patch 5

BR,

Pavel

Labels:
0 Helpful
1 Reply 1

pavelkulakov
Level 1
Level 1

‎11-16-2016 03:25 AM

Problem is solved. The issue was in test ASA device attached to CDA. It had unnecessary parameters (inactive and NetBIOS timers) because of which it sent mapping removal request to CDA. CDA then sent this request to production devices.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card