Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi, Recently i have created a ACS cluster and after that i am not able to get the logs of devices getting authenticated with secondary ACS.Logs are available only for primary ACS authentications. I understand that the logs can be stored on only prim...
Dear Friends, we have IDSM-2 mod on 6509 chasis, till few days back we were able to ssh and login from switch to IDSM but from few days we are getting the below error. Disconnected. no supported authentication methods available(server sent: public ke...
Hi,i have started preparing for my CCNA security, and i was trying to configure AAA using ACS 4.2 on windows server 2003. I have configured the router to use AAA authentication with ACS server based on the cbtnuggets lab.I have verified the reachabil...
Hi,I am using 6 routers in gns3 and there is a problem in route advertisements.R2 is in AS 200, R3,R4,R5 are in AS 100 and R6 is in AS 300, R2-> R3 eBGPR3,R4,R5 are in same AS, iBPG(using Route reflector instead of fullmesh iBGP)R5-> R6 eBGP.R3 to R4...
Hello friends,Need your help,I have 6 routers configured with BGP, r1 directly connected to r2 and r3, r4 is directly connected to r2 and r3, and all are running iBGP AS 100, where as r5 is directly connected to r3 and running eBGP(AS 200) and r6 is ...
Dear Marco, Thank you for all the efforts and help.I found the issue and the logs are reflected on the primary ACS from secondary ACS now.cause : For some reason the port (20514) which is used for sending logs was denied on firewall even though it wa...
Dear Marco, I see exactly the same output as yours, the secondary is configured to send logs to primary. i have not tried to switch the log collector role, any other way to check other than trying the log role swithover.
Dear Marco, The access is allowed for the port 20514 bidirectional.I verified by doing a telnet from secondary ACS to primary ACS but this will be TCP port verification.On UDP port in the access list i dont see any hits.Any suggestions.
Dear Marco, I have checked on the secondary ACS and it shows the log collector as primary ACS and if i try to open monitoring window in secondary ACS it redirects me to primary ACS.
Dear Marco, Thank you for your response. I can see the primary ACS is selected as log collector but still i dont see any logs for those devices which are getting authenticated to secondary ACS.
