ACS 5.2 , in my Primary ACS under System Administration > Operations > Distributed System Management I see my Secondary but it shows "PENDING" under Replication Status.
View 3 Replies
It ´s possible to do replication between a ACS 4.2 installed in a SERVER and Cisco appliance with ACS4.2?.
View 5 Replies View RelatedI would like to know if its possible setup database replication from Cisco ACS 4.2 server to ACS 5.4 server ?
View 3 Replies View RelatedCisco ISE 1.1.3 is running in standalone mode, when I made any configuration it show me the notification that "Configuration changes has been recorded but remain pending" .
View 1 Replies View RelatedFirstly the ACS 4.2.1 for Windows database replication does any one have and documentation on the processes required?Secondly I have a single system installed which is providing TACACS authentication for management access to a Cisco 5508 WLC, the controller prompts with a login box on connection to the web interface. When you put in the username and password pair the box comes back as if the authentication has failed. On the ACS I was unable to see any failed authentications so enabled passed authentication reporting and can see the user passing the process. The WLC is running software version 6.0.199.4. On the ACS I have added the extra two options within the TACACS interface configuration and have a ‘role1=all’ against both the user and the group the user is part of so I am confused as to why the user is still denied access.
View 3 Replies View RelatedJust upgraded from 4.0 - to 4.2 then to 4.2.1 15. As you may have seen with periovous posts of mine its not been an esay ride.I have now managed to get it all working - backups AAA etc but for some reason i cannot get the replication to work! Its states the following...
Within the Database Replication active log - Error OutBound database replication failed - refer to CSAuth log file.Other lines in the log state its ok eg - Component logging reports was updated - being replicated to slave...
Please note that the $ is a symbol that i have used because the symbol in the log is strange and i cannot seem to be able replicate here with this text, for example $etworks - should be networks.
we have a Cisco ACS 1113 SE running v4.0.1.44 and are trying to upgrade it to v.4.2.0.124 following the instructions to upgrade it to v4.1.1.24 first.
We are using the following CD "ACS SE Overall Upgrade CD ACS 3.3.4 and 4,1,1,24 Upgrades"
We can download the 4.1.1.24 image to the ACS appliance via distribution server but the upgrade fails- we obtained the following console output when attempted upgrade was tried;
Upgrade package was not verified
Applying this upgrade package may corrupt the appliance
Continue at your own risk!
[Code].....
I have two ISE appliances installed in a distributed deployment (primary "ISE1" and secondary "ISE2"), each node has the three personas installed on it. The servers are registered together and the replication is working properly between the nodes.When we are working on the first node everything is fine, if I try to disconnect ISE1 and do my tests on ISE2, the cisco NAC agent doesn't popup, unless I uninstall it and reinstall it again from the ISE2. Then it will work properly.
View 31 Replies View RelatedACS 5.1 is failing to authenticate tacacs authentication to the ASA firewall, getting
View 6 Replies View RelatedI am trying to configure the ACS with AD in the identity store but am running into the following issue.I enter the AD Domain Name and username and password and hit the 'Test Connection' button and receive a DNS error stating that it 'Cannot resolve network address'.I have logged into the CLI and test to the domain name from there and it works fine.
View 5 Replies View RelatedI'm somewhat new to ACS and am trying to complete a migration from 4 to 5.3.Currently, I've got ACS joined to my (2003) domain, and it shows status connected (although the test connect fails). I have aaa working without issue for TACACS, but all RADIUS authentication is currently failing. Logs show the message below: "24401 could not establish connection with acs active directory agent"I'm not seeing anything telling in the logs on the domain controllers.
View 1 Replies View RelatedI am trying to upgrade a brand new ISE 3395 from 1.0.3.337 to 1.0.4 (latest). It keeps failing with % Manifest file not found in the bundle Here is the output:
company-ise-01/admin# application upgrade ise-appbundle-1.0.4.573.i386.tar.gpg ftp
Save the current ADE-OS running configuration? (yes/no) [yes] ?
Generating configuration...
Saved the ADE-OS running configuration to startup successfully
Initiating Application Upgrade...
% Manifest file not found in the bundle
[code]...
I can't find anything about this for ISE, although there are a lot of topics for the same error for ACS.
I have a Cisco ACS 5.1 virtual appliance which has been working fine, I have however just discovered that it is now unable to provide me with any logs. TACACS authentication is still working without any issues, the only problem I have is viewing the logs.
View 6 Replies View RelatedI Have asa 5520 with the code 8.0, the mem shows 94% and the CPU shows 85%
View 5 Replies View RelatedI have fresh installed the LMS 3.2.1 without any errors. Then I am adding device in CS, give it correct credentials. Its appears in RME automatically, but it always remain in Pending devices in RME.
I have run a job in RME to check the devices credentials and it's appearing that credentials for snmp are wrong but ssh/ telnet appears as "did not try". Although I have added the correct credentials in CS for device, but it appearing as wrong in RME.
Also when I add device in CS, it's not automatically picking it's device type, until in CS I define its device type manually.
I had a problem with my laptop ICS.
1 Acer laptop with windows 7 home premium
1 MSI laptop with windows 7 ultimate
1 Hp Netbook with windows 7 starter
1 USB Broadband
First i had connect the USB Broadband using by acer laptop to make as wifi router/wifi host via ad hoc.MSI laptop and Hp Netbook was successfully connected and able to connected to the internet which share from Acer laptop.Second, after that i am trying to use MSI laptop to create as wifi router/wifi host just like the same way what i done with Acer laptop.My both Acer laptop and Hp Netbook successfully connect to MSI laptop but only the Acer laptop was unable to connect to internet and it was showing "No Internet access". and the "homegroup something it showing "Unidentified network" on the MSI laptop.I had tried to restart all the laptop and netbook to resetting it, unlucky it still unable to connecting to internet.Also i had set all to "Obtain an IP address automatically".And i found out that my laptop ICS on service didnt starting and on Firewall didnt have ICS on the list.When i try to click the start buttom it popping out this:"The Internet Connection Sharing (ICS) service on Local Computer started and then stopped. Some services stop automatically if they are not in use by other services or programs"
Running 5 PC's and a laptop on a wired/wireless network at home. One PC running Win XP Pro started dropping the network connection (so it appeared) during browsing. Have found the following:
1. MSN messenger runs fine, and doesn't drop out
2. AVG antivirus updates with no issues
3. Web Pages in Chrome and IE will load fine one minute, then cannot load or pause for 1-2 minutes while loading
4. Can ping web addresses/IP addresses from command prompt with no issue.
5. Have changed the network connection from Ethernet to Wireless, which makes no difference to the issue.
6. If I "repair" the connection, and the network refreshes the IP address, I can browse successfully, for about a minute, before the issue occurs again. "Repair connection" again and can browse again for a minute.
7. Checking connected devices to the Netgear router, shows the PC name sometimes, against the IP address, other times it shows the PC as "unknown" against the PC address (when this occurs, web browsing is lost)
8. All other PC's on the network are fine.
I'm trying to get my wife's new 'All Fine 7" netbook Windows' connected via wireless connection. I had a muted attempt at it but so did my daughter and her boyfriend. I've got as far as it saying 'connected' but as soon as it does I get a message; Error from RasDial. I think I have created some conflicts perhaps! In the control panel I have done the following:'Internet options' under 'Connection' I've highlighted 'USB 'Network & Dial-up connections I have a choice of 'My connection' 'Main Computer' 'RT28701' & 'ENC28J601' The connection I have so far seems to be using the RT28701.My other option to 'USB is to select 'Desktop @ 19200' but that didn't seem to work either.
View 9 Replies View Relatedim intending to setup a small office network through a sever at my work and would like to know if it is possible to have the network running with each pc having its own internet connection.in theory this should work by having the internet connected via usb which will leave my ethernet ports free for the network..i would just like to know if this route will work just like that or will i need to have a rethink.
View 13 Replies View RelatedBrand new MSI system using windows 7. we're using a wirless network in the house, and up until today it's been fine. Randomly, Windows is no longer detecting any networks.
I've confirmed there is no prob with the router or signal as I can detect the network in my room and connect to the internet (using a homeplug hardline). I've tried enabling and disabling both the router and wireless card, a system restore (windows made no changes), and when I came to use the windows 7 troubleshooter - it says the device is not enabled?
I am not able to replicate Database between two ACS SE 4.2. I am getting the following error:
Inbound database replication from ACS 'ACS_BEX_001' denied - shared secret mismatch.
The configuration apparently is ok. I am attaching the configuration from both ACS.
Okay, so our old computer took a dump & our friend rebuilt us a new one and he threw in a new router to go with it. Its a D-Link router, which is directly connected to our desktop. However, upon completion of a new desk installment, we put the router into the cabinet and my gateway laptop immediately stopped being able to connect to the internet or the router at all.
1) The router is connected to the internet and broadcasting.
2) I've reset and refreshed the router and my window of available networks on my laptop, which did not work.
3) I've pulled it out of the cabinet, which also had no affect.
4) I did a manual search for the router, and it says the network already exists and asks if i would like to connect and upon agreeing to this, it returns me to the page of available networks, which does not include my router.
i have recently added to a domain. The initial setup is a server running windows 2003 and several xp machines which logon to the domain using mandatory profiles. However, after adding windows 7 machines and logging them on to the system it doesnt load the profiles. (which is fine as I understand you cannot use the same profiles with windows 7+xp)The problem is it automatically creates a roaming profile when logging off and saves it back to the same path as the other profiles under user.V2 which is growing considerably and causing huge logoff and logon times.How can I get the windows 7 machines to not attempt roaming profiles back to the server and instead to just save the profiles locally when logging off.
View 14 Replies View RelatedMy company has 2 sites. Between them we have 100 MGB link. We do replication every day our data. Recently we had a issue on replication then we stopped about 20 replication. And now issue is fixed, we are started replication. Average replication is 75%, we need to reach it 100% ASAP. But me and my co-worker have little bit different mind about replications are running in same time. I thought there is no difference for total time between one by one and all running in same. But co-worker saying one by one is much quicker.
View 2 Replies View RelatedWhat protocol the firewall configuration replicate and monitor the interfaces?
View 1 Replies View RelatedI have 2 Exchange 2010 servers and when I enable the DAG and start replication I see both servers NIC cards reach 100% utilization periodically. I normally don't see this on any of my servers but I figure what the heck it'll be really fast in completion. However, when it peaks at 99-100% for short bursts I see packet loss from other systems on the network.
A minute or two into it I start getting alerts of packet drops on the switch these are connected to (catalyst 2960S). It's not across the board but it's enough to wreak other havoc with processes running. I'm curious as to whether this is the 2 servers having a problem or is this switch not up to it?
I believe the last snapshot I took showed most of the active ports on the switch having a 40-50% transmit status when those 2 servers peaked, which didn't make any sense to me. Is there something on the switch triggering other ports to lose packets or is it broadcasting something it shouldn't?
In more detail:-I'm seeing immediate/more packet loss on the network from the 8 or so APC PDU's that are connected to the same switch at 100/half or 100/full (haven't looked into why that is yet some are coming up at half.
-Couple of sql servers were failing over because they could not reach network resources, timeouts exceeding a few seconds. Really just bizarre for just replication files.
Lastly - any way to throttle the throughput on the Exchange replication via powershell or anything?
How does Replication of cucm servers and other servers like unity presence and all in a cluster take place?
View 1 Replies View RelatedI am looking for any assistance with an issue I am having. Within my network, I have two Net App enclaves that replicate with each other. These hang off of separate switches, one at our primary site and one off of our secondary site, just a few miles away. I can replicate from the primary site to the secondary site at 8GB per minute. From the secondary site back to the primary site, however, the replication passes at about 17MB per minute.
The configuration is exactly the same on both ends. The primary Net App enclave hangs off of a 6513 switch and the secondary Net App enclave hangs off of a Nexus5000. Trace routes and pings all show correct paths and connectivity. I have troubleshoot this for a few days and I have been unable to figure out what is causing the replication issues. The fact that this is bi-directional traffic and I am having problems one way is really throwing me off. There are no ACLs or firewalls present between the two switches.
We have a NETAPP nas box having two interfaces connecting to two fex's on 5ks. The 5ks are inturn connected to nexus 7k boxes. We have a 100mbps man link (LAN Extension). The netapp's two nics are grouped together to form a teaming type of environment. SNAPMirror replication is very poor at the rate 10mbps though the WAN speed is 100mbps and also the wan link is utilized only about 60mbps. What could be the problem. We tried removing storm unicast control 10 but with no effect.
View 1 Replies View Relatedin switch 2960s ( c2960s-universalk9-mz.122-55.SE5 ) , i want to marking the traffic between two hosts (Data replication), i choose to use " mac access-list" to classify my trafic before apply the policy marking . but did'nt work . c
! my mac ACL
mac access-list extended test
permit host 000a.1a41.aa52 host 000a.1a41.1bc2
!
class-map match-all test
match access-group name test
[code]....
When I select Job Broser I get the following crash, LMS 3.2, server has been restarted but I continue to get the error. [code]
View 4 Replies View RelatedI'm running a Cisco 891 it has both crypto maps and ipsec VTI's running on the external interface. The cryto maps are for sites that do not have a cisco router and the Tunnels are for the sites that use crypto maps work perfectly fine. But I much prefer using unnels as it gives a routable interface, ospf works ect.
The tunnel interfaces will periodicly fail (Line protocol down) at no set interval, they will then not come back up again. To bring them back up I either have to shutdown and then re-enable the interface or run "clear cry ses rem *.*.*.*"
Logging with isakmp and ipsec errors provides the following:
55801: *May 1 10:31:16.015: ISAKMP:(0):Can't decrement IKE Call Admission Control stat incoming_active since it's already 0.55802: *May 1 10:31:16.015: ISAKMP:
[Code].....
My VRF Collector job has started failing. I have attached the contents of the vnmcollector.log file after setting debug level to DEBUG.
View 1 Replies View Related
