Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
430
Views
0
Helpful
1
Replies

ACS Problem

ismail884
Level 1
Level 1

‎03-25-2008 10:13 AM - edited ‎03-10-2019 03:44 PM

Hi

I have 2 ACS SE 4.1 servers implemented to perform redundancy to client's authentication.

The problem that I have is:

I configured the 2 engines with IP addresses and also internal DB replication so the Primary ACS send replication data to the Secondary ACS as follow.

ACS_PRI: (Self):10.10.1.10 and I added the Secondary ACS as an AAA server to the ACS PRI AAA table with the Address 10.10.1.11.

ACS_SEC: (Self):10.10.1.11 and I added the Primary ACS as an AAA server to the ACS SEC AAA table with the Address 10.10.1.10.

For the first time all operations seem operational but when I shutdown the ACS servers for a while, I note that the AAA servers table is changed and clients cannot authenticate.

After booting the ACS servers the AAA servers Tables are as follow:

In the Primary ACS: (self):127.0.0.1

DELIVRANCE1:10.10.1.10

ACS_SEC :10.10.1.11

In the Secondary ACS: ACS_SEC:10.10.1.11

DELIVRANCE1:10.10.1.10

Before shutting down ACS servers AAA servers' tables were:

In the Primary ACS: (self): 10.10.1.10

ACS_SEC:10.10.1.11

In the Secondary ACS: (self):10.10.1.11

ACS_PRI:10.10.1.10

Thanks for your assistance

Ismail

Labels:
0 Helpful
1 Reply 1

Jagdeep Gambhir
Level 10
Level 10

‎03-28-2008 04:12 PM

Ismail,

Pri acs

Go to acs---> Network configuration---->Proxy dis table--->default---->Make sure DELIVRANCE1 is in forward to box

Regards,

~JG

Go to acs---> Network configuration---->Proxy dis table--->default---->Make sure DELIVRANCE1 is in forward to box

0 Helpful
Customers Also Viewed These Support Documents