Showing results for 
Search instead for 
Did you mean: 

Remove loopback entry ( from ACS 3.x and 4.x ACS windows and appliance.





    The below listed steps will help us in such scenario where AAA server ip address changes to loopback

    It's little easy to fix it with ACS windows server. However, in case of ACS appliance it little cumbersome but can be done.

    More Information

    At very first place we need to try and setting the original ip address by using "Set ip" Command from the console connection of the ACS Solution engine. Once you successfully changed the ip address, you can apply the latest patch on the ACS SE (This will fix the problem).

    Establishing a serial console connection

     If the first/above suggestion doesn't help then the below listed steps can be performed.

    In order to remove the loopback entry from the Database, we need to follow following steps.

    Download ACS 4.2

    Please download ACS 4.2 trial from following link, if you do not have ACS Full version for Windows purchased.

    • ACS v4.2.0.124 90-Days Evaluation Software

    Install ACS 4.2

    1. Install eval version on Windows 2000/2003 server. Please also ensure that JAVA is installed on that server.
    2. Take a backup from ACS SE from, System Configuration > ACS Backup >Backup Now.
    3. Restore the database backup on ACS eval.
    4. On eval ACS , go to Network Configuration > find the AAA Server entry with entry. Edit it and give it some other IP forexample, Submit + Apply.
    5. On eval, Restart CSAdmin service.
    6. On eval, go back to Network Configuration and search for the changed  IP address and delete that entry, Delete + Apply. 
    7. Take a backup from eval ACS, System Configuration > ACS Backup > Backup Now.
    8. Restore the database backup from eval ACS into ACS SE from option, System Configuration > ACS Restore, choose the database backup. Check Check option "User and Group Database" and "CiscoSecure ACS System Configuration", then press Restore Now.
    9. On ACS SE, go to Network Configuration, make sure that entry is not there and for ACS SE's hostname we have the correct IP address. Go to Proxy Distribution Table > (Default). Move the server's hostname entry that has correct IP for this ACS SE into "Forward To" column, if not already. Then press "Submit + Restart".

    NOTE that the loopback entry ( will not cause issues in authentication, but break the replication in ACS 4.x setup.

    Reference Defect

    Recognize Your Peers
    Content for Community-Ad