ACS SE v4.14 build 13 failing mutual authentication on database replication

ddavis · ‎10-19-2007

Hello,

I have a primary ACS in production and am trying to replicate it's database to a new secondary ACS. After initiating the process the database error log on the secondary logs a key error indicating that it's key does not match the primary, although it does.

The secondary is on the other side of a 600M layer 2 WAN link.

Both ACS SE appliances are running the exact same software.

Any ideas on how to resolve this?

Thanks,

D.Davis

mchin345 · ‎10-25-2007

For the succesful replication of the database between Primary and Secondary ACS server, refer to this checklist:

On Primary ACS server:

You must have the AAA server entry for Primary and Secondary server(s) in the Network Configuration > AAA server section.

You must have the same shared key for both entries Primary and Secondary ACS Server(s).

In the Replication column in System Configuration > Internal Database Replication, the ACS must have the entry of all the secondary servers that ACS wants the replication information to

be sent.

On Secondary ACS server(s):

You must have AAA server entry for Primary and Secondary server(s) in Network Configuration > AAA server section.

You must have the same shared key for both entries Primary and Secondary ACS Server(s).

In the Replication column in System Configuration > Internal Database Replication, there should not be any entry there. It should be empty.