cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2383
Views
0
Helpful
3
Replies

Error : Unsupported ACL Objects

aniortegr
Level 1
Level 1

Hello,

I'm running CSM 4.2, ans on an ASA 5580-20, runnin 8.1

I receive the following error after a "validate" and I really don't where to look !

Error : "Unsupported ACL Objects -> defined in traffice class for device in Service Policy Rules "

Decription : ACL BB containing User Identity is invalid for this device

Cause : The following  :

     - rule # 1 on device <firewall-name> is contains ACL BB with user identity

Action : ACL BB containing USer Identity is supported for ASA 8.4(2+) onwards

I've looked everywhere and no USer identity is configured on that firewall.

If someone's got an idea !

Thanks.

3 Replies 3

mirober2
Cisco Employee
Cisco Employee

Hello,

This is likely related to the following bug:

CSCts90728 - CSM 4.2: Multiple context ASA discovery may fail.

I would recommend opening a TAC case to have this investigated. If the above bug is the correct one, there is a temporary patch TAC can install to get this working for you.

-Mike

Hi

Is this patch public available? I'm running into the same bug here, by appling a simple inspection policy to a bunch of FWSMs.

Roberto

Hi Roberto,

The fix will be included on cisco.com in CSM 4.2 SP1, but this is not available yet. You can open a case and have a TAC engineer provide Cumulative Patch 1 (CP1) which does contain the fix if you are running into the same bug.

-Mike

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: