Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have a ASA 5550 setup with the AnyConnect Essentials License and it works. Behind the VPN we have a CA server running 4.1.8 using SSO. The VPN aspect of this works but I've run into a issue with OSX and the CA Agent. Windows and the CA Agent SSO...
We are seeing these messages in our CAM logs:"Unable to add user to Clean Access Server <CAS IP>, [00:00:00:00:AA:13 ## x.x.x.x] username"While the clients see:"Invalid Clean Access Server"We are running 4.1.3.1 software and using In-Band for our wir...
Hrmmm, not what I was hoping for... Can you copy/paste the output from:show run aaa-server ess-ldap-groupYou might want to edit the prior post and remove some stuff .-Dusty
Can you copy and paste the output of:asa# debug ldap 255asa# test aaa authorization LDAPGROUP host openldap.acme.com username johnchambersasa# un allThanks,-Dusty
I don't really have an answer to your question but this might help troubleshooting the problem.SSH to the CAM and tail the following file (you'll need to be root):[cam]# tail -f /perfigo/control/tomcat/logs/nac_manager.logYou should see LINK_UP / LIN...
Hey Tim, Thanks for the help, it worked! The plist file already existed and had 5 like you said. Once I changed that and restarted CAA it worked. Not sure how we are going to get end users to do this though...Thanks,-Dusty