09-30-2011 07:46 PM - edited 02-21-2020 04:28 AM
Hello,
I'm running CSM 4.2, ans on an ASA 5580-20, runnin 8.1
I receive the following error after a "validate" and I really don't where to look !
Error : "Unsupported ACL Objects -> defined in traffice class for device in Service Policy Rules "
Decription : ACL BB containing User Identity is invalid for this device
Cause : The following :
- rule # 1 on device <firewall-name> is contains ACL BB with user identity
Action : ACL BB containing USer Identity is supported for ASA 8.4(2+) onwards
I've looked everywhere and no USer identity is configured on that firewall.
If someone's got an idea !
Thanks.
10-09-2011 05:17 AM
Hello,
This is likely related to the following bug:
CSCts90728 - CSM 4.2: Multiple context ASA discovery may fail.
I would recommend opening a TAC case to have this investigated. If the above bug is the correct one, there is a temporary patch TAC can install to get this working for you.
-Mike
11-14-2011 02:18 AM
Hi
Is this patch public available? I'm running into the same bug here, by appling a simple inspection policy to a bunch of FWSMs.
Roberto
11-18-2011 01:46 PM
Hi Roberto,
The fix will be included on cisco.com in CSM 4.2 SP1, but this is not available yet. You can open a case and have a TAC engineer provide Cumulative Patch 1 (CP1) which does contain the fix if you are running into the same bug.
-Mike
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide