cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
903
Views
0
Helpful
1
Replies

No username in Radius logs if authentication fails

gandrus
Level 1
Level 1

I'm running ACS v 5.1 and have noticed that it an autheication fails the log doesn't show the username it there is a failure with the authentication, but if the autheication is successful the username shows up.  Does anyone know how to make it so the failure messages are of value because it shows the username?

Here is an example:

Authentication Summary

Logged At:

June 20,2012 1:01:43.270 PM

RADIUS Status:

EAP session timed out : 24415 User authentication against Active Directory failed since user's account is locked out

NAS Failure:


Username:

MAC/IP Address:

Network Device:

  :   : 

Access Service:

Default Network Access

Identity Store:

AD1

Authorization Profiles:

CTS Security Group:

Authentication Method:

PEAP(EAP-MSCHAPv2)

1 Reply 1

Tarik Admani
VIP Alumni
VIP Alumni

Hi can you post the entire error message, at time the eap session times out before the handshake is complete, once the handshake completes then the users credentials are sent through the tunnel where authentication occurs.

Thanks,

Tarik

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: