Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Create a new article
1387
Views
0
Helpful
0
Comments

Cisco Secure Access Control Server (ACS) not able to authenticate the user/client if remote logging fails

TCC_2
Advocate
Advocate

‎06-22-2009 06:10 PM - edited ‎02-21-2020 09:56 PM

Core issue

This issue arises due to Cisco bug ID CSCeg40355.

If a Cisco Secure ACS that is configured for remote logging fails to successfully transmit an accounting log to the remote server, authentication attempts to the ACS server during this time may fail.

The authentication failure may not be reported at all, or it may be reported incorrectly (as being successfully authenticated).

Note: The authentication reports show that the credentials are good and the authentication request did pass. What failed is the RADIUS accounting request since RADIUS authentication was not available. Then the actual logging failed. This is the right behavior.

Resolution

As a workaround, perform either one of these two steps:

  • The issue can be fixed by disabling the remote logging functionality altogether, or correct the cause of the logging failure.

  • This issue has been fixed in ACS SE version 4.0. In order to download the ACS SE software, refer to the ACS Software Download page.

Problem Type

Troubleshoot software feature

Connectivity

Product Family

Cisco Secure access control server

Labels:
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Quick Links
Discussions
Customers Also Viewed These Support Documents