In this issue, only three VPN clients can connect to ASA/PIX and connection for fourth client fails with the Secure VPN Connection terminated locally by the client. Reason 413: User Authentication failed error message. In most cases, this issue is related to simutaneous login under group policy. The ASA uses Cisco Adaptive Security Device Manager (ASDM) for configuration.
If the Inherit check box is not selected on ASDM, this parameter specifies the maximum number of simultaneous logins allowed for this user. The default value is 3. The minimum value is 0, which disables login and prevents user access.
In order to resolve this issue, increase the value for simultaneous logins.
Choose ASDM and then Configuration > VPN > Group policy. Choose Group > Edit > General andremove the inherit checkbox for Simultaneous Logins. Choose the appropriate value.
If you try more than three client connections again, it should work now.
I am having a user who is trying to access iSE using an AD account.The account has the proper groups associated with it and I've verified the ISE configuration. How do I view logs of attempted login attempts? Thanks, Phill
Hi, I have two ISE 2.7 Patch 2 virtual devices. I have a test switch with some users and phones on it. My aim is for laptops, desktop and wyse terminal to authenticate using dot1x. The Cisco phone will authentication via mab. The Cisc...
The device requesting the access is going through the proxy. ISE shows the proxy in region A which is our datacenter. That is fine, however it's trying to authorize the device against region A instead of the actual location policy the network device is co...
we have a requirement to allow non corporate devices straight out to the internet, this is to do with ISO27001. So have started to create iPSKs from internal to DMZ no problem, just time consuming creating DNS,DHCP, Zones ect on Firewall and th...
Do the Firepower appliances have the ability to show the L7 apps used by a rule similar to Palo Alto's Usage feature? From what I've found, the only way to see the app used by a rule is to check the event explorer and filter on the rule name. This usually...