VPN error %ASA-7-715042 - IKE received response of type to a request from the IP address utility
I'm having an issue where clients seem to randomly not be assigned an IP address for their session. We're using an ACS to authenticate sessions to a back end RSA server and here's what I've found thus far
RSA - Shows a passcode acepted message for the user
ACS - Shows a succesful login for the user
ASA logs - Show a succesful login for the user except for when the session requests the IP address
ACS - Auths and provides the IP
ASA - Address Assignment Policy is set to "use authentication server"
I haven't been able to consistently re-create this scenario but it has happened to me at random times. User experience is that they can try to connect anywhere between 2-10 attempts before getting in and the logs always show that a valid IP was recieved from the ACS server.
Any help and/or recommendations would be appreciated.
VPN error %ASA-7-715042 - IKE received response of type to a req
Update to this item. I added a local IP pool and change the address assignment policy to pull from the local server then added the pool to the IPsec and Anyconnect profiles.Then changed the ACS config to not assign an address.
Not getting as many errors like this however they're still happening.
This video provides the steps to configure the Cisco Threat Response (CTR) and ESA Integration.
This is live on the portal:https://video.cisco.com/video/6159336218001
And on YouTube:https://www.youtube.com/watch?v=UCKIdx5rdFg
I need to migrate from C170 to C190 and have already match to the same Firmware Version. I have a question. Is there any method that can export and import the configuration file instead of form cluster ?
This AMA will serve as the Q&A for the Cisco Live Digital breakout DGTL-BRKSEC-1011 - "A Challenger Appears: Defending Mailboxes in the Cloud" which covers a brand new product which will be announced during the event: Cloud Mailbox Defense.
I've fixed this before but now I'm running into a different type of an issue. My firewall isn't booting to the image so I have to keep reloading the image onto the ASA. Any help would be appreciated. Also my Config-Register is set to 0x1. As of right now,...
Join us live on Tuesday, May 19th at 10 am PT (and on demand after) as we officially bust the myths around SMBs and cybersecurity. Join our experts for a live Cisco Chat - we'll share some fascinating survey results, and outline key factors for a suc...