ACS upgrade and problems with CW LMS

Unanswered Question
Nov 16th, 2007

we have LMS 2.6. AAA mode was ACS. Everything worked perfect till we upgraded the existing ACS Servers from V4.0 to V4.1.

After the updrade was done all the devices went to "Not Authorized" status.

ACS mode enabled and no errors reported. No changes were done to ACS or LMS config.

I need now either fix this problem or change the AAA mode to non-ACS.

Any Ideas?

we have LMS 2.6. AAA mode was ACS. Everything worked perfect till we upgraded the existing ACS Servers from V4.0 to V4.1.

After the updrade was done all the devices went to "Not Authorized" status.

ACS mode enabled and no errors reported. No changes were done to ACS or LMS config.

I need now either fix this problem or change the AAA mode to non-ACS.

Any Ideas?

One more note - if I try to do bulk import of devices from acs I receive this error

Import from ACS failed: Unable to process HTTP request: ERROR:0x0001:Insufficient privilegeUnable to import device group

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Joe Clarke Sat, 11/17/2007 - 09:16

Turning off ACS mode is easy. Just shutdown Daemon Manager, and run:

NMSROOT/bin/perl NMSROOT/bin/ResetLoginModule.pl

The error you're getting, however, points to a problem with the ACS admin user you configured under your AAA settings in LMS. This user must have full access rights to ACS. The best way to see if this is the case is to go to Administration Control and click on the admin's username. On the next page, ALL boxes must be checked.

There is another caveat, though. If this is an ACS appliance, the appliance administrator cannot be the ACS administrator you specify in LMS. The appliance admin is special, and does not have CGI rights. You can see if the current admin user is the appliance user by going to Administration Control in ACS. The top line will say which user is the appliance admin.

If the current ACS admin user is the appliance admin, create a new admin user, grant that user al ACS rights, and update LMS with the new username and password.

Actions

This Discussion