I am not able to replicate Database between two ACS SE 4.2. I am getting the following error:
Inbound database replication from ACS 'ACS_BEX_001' denied - shared secret mismatch.
The configuration apparently is ok. I am attaching the configuration from both ACS.
I would like to know if its possible setup database replication from Cisco ACS 4.2 server to ACS 5.4 server ?
View 3 Replies View RelatedFirstly the ACS 4.2.1 for Windows database replication does any one have and documentation on the processes required?Secondly I have a single system installed which is providing TACACS authentication for management access to a Cisco 5508 WLC, the controller prompts with a login box on connection to the web interface. When you put in the username and password pair the box comes back as if the authentication has failed. On the ACS I was unable to see any failed authentications so enabled passed authentication reporting and can see the user passing the process. The WLC is running software version 6.0.199.4. On the ACS I have added the extra two options within the TACACS interface configuration and have a ‘role1=all’ against both the user and the group the user is part of so I am confused as to why the user is still denied access.
View 3 Replies View Relatedhow to migrate the db from acs windows 3.3 to acs appliance 4.2.15.We are replacing win 3.3 to appliance 4.2.15 as a part of end of life. So we have the eap-tls/peap authentication.It has the huge records. So suggest me the steps to migrate the db from win 3.3 to appl 4.2.15.Do we need to upgrade to win 3.3 to win 4.0 to win 4.2 & then to migrate to appl 4.2 ?
View 4 Replies View RelatedIt ´s possible to do replication between a ACS 4.2 installed in a SERVER and Cisco appliance with ACS4.2?.
View 5 Replies View RelatedMy company has 2 sites. Between them we have 100 MGB link. We do replication every day our data. Recently we had a issue on replication then we stopped about 20 replication. And now issue is fixed, we are started replication. Average replication is 75%, we need to reach it 100% ASAP. But me and my co-worker have little bit different mind about replications are running in same time. I thought there is no difference for total time between one by one and all running in same. But co-worker saying one by one is much quicker.
View 2 Replies View RelatedWhat protocol the firewall configuration replicate and monitor the interfaces?
View 1 Replies View RelatedACS 5.2 , in my Primary ACS under System Administration > Operations > Distributed System Management I see my Secondary but it shows "PENDING" under Replication Status.
View 3 Replies View RelatedI have 2 Exchange 2010 servers and when I enable the DAG and start replication I see both servers NIC cards reach 100% utilization periodically. I normally don't see this on any of my servers but I figure what the heck it'll be really fast in completion. However, when it peaks at 99-100% for short bursts I see packet loss from other systems on the network.
A minute or two into it I start getting alerts of packet drops on the switch these are connected to (catalyst 2960S). It's not across the board but it's enough to wreak other havoc with processes running. I'm curious as to whether this is the 2 servers having a problem or is this switch not up to it?
I believe the last snapshot I took showed most of the active ports on the switch having a 40-50% transmit status when those 2 servers peaked, which didn't make any sense to me. Is there something on the switch triggering other ports to lose packets or is it broadcasting something it shouldn't?
In more detail:-I'm seeing immediate/more packet loss on the network from the 8 or so APC PDU's that are connected to the same switch at 100/half or 100/full (haven't looked into why that is yet some are coming up at half.
-Couple of sql servers were failing over because they could not reach network resources, timeouts exceeding a few seconds. Really just bizarre for just replication files.
Lastly - any way to throttle the throughput on the Exchange replication via powershell or anything?
How does Replication of cucm servers and other servers like unity presence and all in a cluster take place?
View 1 Replies View RelatedJust upgraded from 4.0 - to 4.2 then to 4.2.1 15. As you may have seen with periovous posts of mine its not been an esay ride.I have now managed to get it all working - backups AAA etc but for some reason i cannot get the replication to work! Its states the following...
Within the Database Replication active log - Error OutBound database replication failed - refer to CSAuth log file.Other lines in the log state its ok eg - Component logging reports was updated - being replicated to slave...
Please note that the $ is a symbol that i have used because the symbol in the log is strange and i cannot seem to be able replicate here with this text, for example $etworks - should be networks.
I am looking for any assistance with an issue I am having. Within my network, I have two Net App enclaves that replicate with each other. These hang off of separate switches, one at our primary site and one off of our secondary site, just a few miles away. I can replicate from the primary site to the secondary site at 8GB per minute. From the secondary site back to the primary site, however, the replication passes at about 17MB per minute.
The configuration is exactly the same on both ends. The primary Net App enclave hangs off of a 6513 switch and the secondary Net App enclave hangs off of a Nexus5000. Trace routes and pings all show correct paths and connectivity. I have troubleshoot this for a few days and I have been unable to figure out what is causing the replication issues. The fact that this is bi-directional traffic and I am having problems one way is really throwing me off. There are no ACLs or firewalls present between the two switches.
We have a NETAPP nas box having two interfaces connecting to two fex's on 5ks. The 5ks are inturn connected to nexus 7k boxes. We have a 100mbps man link (LAN Extension). The netapp's two nics are grouped together to form a teaming type of environment. SNAPMirror replication is very poor at the rate 10mbps though the WAN speed is 100mbps and also the wan link is utilized only about 60mbps. What could be the problem. We tried removing storm unicast control 10 but with no effect.
View 1 Replies View Relatedin switch 2960s ( c2960s-universalk9-mz.122-55.SE5 ) , i want to marking the traffic between two hosts (Data replication), i choose to use " mac access-list" to classify my trafic before apply the policy marking . but did'nt work . c
! my mac ACL
mac access-list extended test
permit host 000a.1a41.aa52 host 000a.1a41.1bc2
!
class-map match-all test
match access-group name test
[code]....
How do I, if I even can, adjust the MAC table timeout from 5 minutes to whatever is bigger and allowable?
I would like to also like to change the ARP table timeout as well.
I need to generate an ODBC connection to the upm Datasource on LMS 4.1 running on Win2K8. I have successfully built connections to cmf, ipm and rmeng, however UPM keeps failing saying that the Database is not found.
Here are my settings.
Driver = CiscoWorks Embedded Database
ODBC Tab - Data source name = upm
ODBC Tab - Description = Device Performance
Login Tab - Supply user ID and Password is selcted
Login Tab - User ID = lmsdatafeed (i have tried DBA as well)
Login Tab - Password = set using the password I estabplished with the dbaccess.pl and dbpasswd.pl scripts
Database.Server name = upmEng
Network.TCP/IP = HOST=<lms server ip>;DOBROADCAST=NO;ServerPort= 43800
I validated the server port using netstat -a -b -o and matching up the PID with the UPMDBEngine process shown in the LMS Manage Processes window.Windows firewalls on the remote machine and the LMS server are off.
what is the database to use cisco LMS3.2 and how to access the database?
View 3 Replies View RelatedIf i reinialize(restore) the cmf database.do i need to reinialize all the databases.???
or if i reinialize the cmf database and do bulk import the devices is enough?
We are using CWLMS 2.6 on a UNIX machine. And recently we changed the SNMP String to our network devices. One of L2 switches keeps logging the following message:
%SNMP-3-AUTHFAIL: Authentication failure for SNMP req from host 10.x.x.1
Where 10.x.x.1 is ciscoworks LMS server. I found a solution on many sites that suggest resetting DFM database. I stopped first the daemon manager and tried to apply the perl script:
perl dbRestoreOrig.pl dsn=dfmInv dmprefix=INV npwd=cisco
but it gives me the following error:
Can't locate CRM.pm in @INC (@INC contains: /usr/perl5/5.6.1/lib/sun4-solaris-64int /usr/perl5/5.6.1/lib /usr/perl5/site_perl/5.6.1/sun4-solaris-64int /usr/perl5/site_perl/5.6.1 /usr/perl5/site_perl /usr/perl5/vendor_perl/5.6.1/sun4-solaris-64int /usr/perl5/vendor_perl/5.6.1 /usr/perl5/vendor_perl .) at dbRestoreOrig.pl line 31.
BEGIN failed--compilation aborted at dbRestoreOrig.pl line 31.
CRM.pm already exists in the path ENV{NMSROOT}/lib/perl/db
At line 31 of dbRestoreOrig.pl – the error – I found the following:
push(@INC, "$ENV{NMSROOT}/cgi-bin/dbadmin/pdbadmin");
use lib "$ENV{NMSROOT}/lib/perl/db";
I gave the system the path of NMSROOT and run the script again but it gives me the same error “Can't locate CRM.pm”
we are desperately trying to set a custom password of our WCS database in order to use it for direct SQL queries (Cumbersome over Web surface). To my knowledge there is a way to reset it however this password would be randomly generated and not available in plain text.
Until version 6 there was a feature to directly set a password via the dbadmin command.
I have done a WCS 7.0.220.0 to NCS migration prior to moving to Prime 1.2. I followed the instructions to export the WCS database via the export.bat all command and exported the database. However, when I import this zip fileto NCS there do not seem to be any of the original WCS templates. All the maps and AP details have migrated but no templates.
I have tried the export again and ploughed through the resultant zip file looking for anything that looks like template files but there is nothing immediately apparent that looks like templates.
I tried to change my password for rmeng using the following command:
./dbpasswd.pl dsn=rmeng encryption=yes npwd=NEWPASSWORD
Here is the output from the dbpwdChange.log
INFO: Start changing password for database 'rmeng'...
Thu Sep 29 14:51:18 GMT 2011> INFO: New userinfo updated into database
[Code].....
Recently I installed LMS 4.1 accidentally on the c-drive, which, as a result, fills itself with a growing database and associated logfiles. How can I move both items to another drive safely? I allready managed to move configs and downloaded software.
View 7 Replies View RelatedI have a 4402 being used as a dmz anchor and we use WCS to allow our Helpdesk to create lobby ambassador accounts. Recently they have been getting error messages when attempting to create accounts. I am seeing the database maxxed out at 2048. The docs state database entries are made up of mac filters(don't use)..ap mic/ssc(don't use)..Dynamic interfaces(minimal) management users(2) local netusers (100 approx)..and excluded clients(none). So the numbers don't add up.I am on 4.2.61.0 code.. I will say also that WCS shows alot more netuser accounts than my anchor does but no where the numbers to max out the database. Is there some other criteria that hits against the datasbase number?? And what can I do on the WCS to insure it si synch'd up against the dmz anchor other than a audit..
View 3 Replies View RelatedI have question about the basics of a high performance application and database server connection to each other. I have two servers, one application and one database server. Both of them are Windows 2008 R2 servers. I would like to connect them. What is the best configuration for quicker communication between them. Is it better to connect them through a network switch? Or directly connect them? Do I need to dedicate one of the ethernet ports on each server to separate their traffic to each other, from the internet connection traffic?
View 5 Replies View Relatedi configured pix 525 for easy vpn. About 100 to 200 people will use this service. i dont have much knowledge about radius and tacacas servers. Is local data base enough for extended authentication or should i configure the server for it ?
View 2 Replies View Relatedan attacker have configured his PC with an static IP address but there is no such entry configured statically in switch, neither in DHCP snooping database.now when he want to generate traffic will switch block him? because there is no entry of his PC in the switch database.
View 2 Replies View RelatedWhen I try to add new MAC entrys to the WLC I get the following message unable to add mac entry to database, reached max size the problem is when I look at the stats there is only 386 MAC entry and the databse size was set to 1024 entry..The work around was to increase the size of the database to 2048.Is there any why to clean up the database?
View 2 Replies View RelatedJust installed ACS 5.0.0.21. Monitoring and reports database was working, but now is not. When trying to open, I get "Monitoring and reports database currently unavailable. Trying reconnect in 5 minutes." From CLI "sho application status acs" gives me the following:
ACS role: PRIMARY
Process 'database' runningProcess 'management' runningProcess 'runtime' runningProcess 'adclient' runningProcess 'view-database' runningProcess 'view-collector' runningProcess 'view-jobmanager' runningProcess 'view-alertmanager' running
Also, logs show nothing unusual.
Would like to check up either Microsoft SQL Express 2012 is able work with ACS 5.3 remote database?
View 5 Replies View RelatedI have the following message in my CiscoPrime LMS 4.2.2 home portal: Discrepancies: Unable to connect to Data base. Probable Cause: ANIDbEngine process may be down.
View 4 Replies View RelatedI am considering using IP sticky timeout, but have a quick question about the database, is the 800,000 sticky connection per appliance or per context?
View 1 Replies View RelatedWe have recently upgraded acs 5.1 to 5.3 ( normal upgrade process), all secondary (ACS-B) was deregistered from primary (ACS-A , used as configuration server and log collector) and updated successfully. But while upgrading primary acs server was rebooted manually. But later primary server was re upgraded successfully to 5.3.
Just to ensure database is not lost on primary acs (ACS-A) , primary acs was registered to one of the secondary acs (ACS-B). Initially ACS-A registered with ACS-B, both ACS was showing proper role now. ACS-A ( secondary ) and ACS-B (primary). But on New primary ACS (ACS-B) is showing new secondary (ACS-A) offline and replication pending. Whereas on Secondary ACS-B its shows primary ACS-A online and updated. But ACS replication id is gradually incrementing. ACS system is in this system for last 2 day, But not sure if there is real replication happening at backend? How long it take place to replicate completely? and how to check / verify status of upgrade?