Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1823
Views
5
Helpful
6
Replies

Sourcefire AD Group problem

pzivotic1
Level 1
Level 1

‎04-05-2016 06:12 AM - edited ‎03-12-2019 05:57 AM

Hello ,

I am having problem to create rules for different AD group. I already got few rules for individual AD group and they are working fine.

But when i want to add specific group ( group B ), i  am getting error  Unknown Error (299): Invalid access_type: read (/usr/local/sf/lib/perl/5.10.1/SF/EOHandler.pm line 1213) just for that group B. Before this i noticed that group B, for which i got problem,

is processed by rule created for different group ( group A ). They are completely differnet from each other, not members of any other group,

doesn't have same members.

Could You please help me with this

Thank You

2 people had this problem
Labels:
0 Helpful
6 Replies 6

Aastha Bhardwaj
Cisco Employee
Cisco Employee

‎04-05-2016 07:16 AM

Hi,

It seems to be some issue with the rule that is being created , I would suggest you to close the FMC , restart creating the rule and try saving it everytime when you create a rule so we know what part is exactly failing .

If that does not resolve the issue , you might need to open up a TAC case so that further investigation can be done on the same.

Regards,

Aastha Bhardwaj

Rate if that helps!!!

khalifa_bara
Level 1
Level 1
In response to Aastha Bhardwaj

‎04-14-2016 08:30 AM

Hello,

I have the same issue, in the section "Access Control Policy" when i press the button "Store ASA Firepower changes", i get the pop-up "Save Error". So i can not make changes, create or delete rules, i'm stuck. Please help me !

Versions :

ASA 9.6(1)

ASDM 7.6(1)

Firepower 6.0.1-29

Device : ASA 5506-x (License TAMC all registered)

Preview file
10 KB
0 Helpful

S M85
Level 4
Level 4
In response to khalifa_bara

‎05-13-2016 09:26 AM

hi Khalifa, 

Did you fixed this issue? I run into the same issue.

Regards,
Sander

0 Helpful

yogdhanu
Cisco Employee
Cisco Employee
In response to S M85

‎05-13-2016 09:35 AM

Hi

It would require removing some objects from CLI. Would suggest to open TAC case to resolve the issue.

0 Helpful

S M85
Level 4
Level 4
In response to yogdhanu

‎05-13-2016 11:09 AM

ehh it's my ASA for home use, got it from LIVE :) 

Really strange, cause i just installed the image and upgrade the damn thing. Only got 2 rules in the Access Policy. You got a technote or something that i can try?

0 Helpful

S M85
Level 4
Level 4
In response to S M85

‎05-13-2016 03:50 PM

Fixed it a couple of hours ago. You can put the rules in disabled state and save the config and push it. After the configuration change is done, you can remove the disabled rules. Another push of the access policy and you're done with the errors. 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card