Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
544
Views
0
Helpful
2
Replies

NAC AD Single Sign On issue

yuchenglai
Level 1
Level 1

‎10-28-2008 11:05 AM - edited ‎02-21-2020 03:04 AM

Hello,

I've been having issues with NAC AD SSO. The AD SSO service is started on both my CAS's in the CAS pair, and I do see that the Clean Access Agent attempts to perform AD SSO. But it fails and defaults to prompting for a local username and password. After which, I see the following event recorded in the CAS's logs:

Oct 17, 2008 1:46:45 PM com.perfigo.wlan.jmx.admin.GSSServer$LoginPrivilegedAction run SEVERE: Error opening server socket. Socket closed

Does anyone know what this means?

0 Helpful
2 Replies 2

michael_dean
Level 1
Level 1

‎10-28-2008 12:51 PM

If this is on XP then you may be having the same problem that I had. The problem turned out to be a MSoft issue with the Kerberos ticket expiring.

If it is, there is a hotfix: http://support.microsoft.com/kb/885887

Mike

0 Helpful

Daniel Laden
Level 4
Level 4

‎11-08-2008 10:32 AM

If the AD SSO service started on the CAS but the users are failing AD SSO, I would start with confirming the user is logging into the domain and not using cached credentials. AD SSO using the users kerberos ticket to authenticate

Load the MS kerbtray utility and confirm a valid kerberos ticket is present (icon will be green).

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card