cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1456
Views
0
Helpful
4
Replies

ACS 4.2 Authorisation failed by a user that doesn't exist

NUNO BAIAO
Level 1
Level 1

Hi,

I am getting Authorisation requests failed log entries for a user however there aren't any successful authentication logs.

The user would never be able to authenticate as it no longer exists in ACS (it was the user for someone who left the company 3-4 month ago)

The other wierd thing is that the caller-id is 0.0.0.0

BTW the NAS is a Cisco ASA firewall running 8.0(3)

Thanks for the help

4 Replies 4

Andrew Phirsov
Level 7
Level 7

So what's weird about what u've said?

This usually happens if the user is still exist but has no privilege to the network (user is disabled or enabled but with no authorization to the specified device).

Make sure that the user is deleted. If you are talking about an AD user, then make sure to also delete the corresponding dynamic user in the ACS server.

HTH

Amjad

Rating useful replies is more useful than saying "Thank you"

The weird thing is that the caller-id is 0.0.0.0 while afaik it should be the ip address of the client machine.

Hi Amjad,

I am completly sure the user doesn't exist in the acs database and we don't have AD integration.

Cheers,

Nuno

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: