WLC authentication issue to ACS

Unanswered Question
Jan 12th, 2009
User Badges:

When I web browse to a WLC I enter my username and password. However it keeps propting me as though the login is incorrect. When I check the ACS server it is showing successful login attempts. Why would the ACS successfully authenticate but the WLC still stops me from accessing it?



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
danhosking Tue, 01/13/2009 - 16:24
User Badges:

This is the log from the WLC. On the ACS it says it has passed. I have altered to the username field below.


*Jan 13 02:27:09.532: %EMWEB-1-LOGIN_FAILED: ews_auth.c:2092 Login failed. User:Johnsmith. Service-Type is not present or it doesn't allow READ/WRITE permission..

danhosking Wed, 01/14/2009 - 14:18
User Badges:

Hi,


The roll has been set for Admin with no luck. I raised a TAC case and it seems the WCS and WLC are casuing a conflict when they are both set up to authenticat management users to the ACS. If just the WLC and ACS are configured it works, or just he WCS and ACS it works but not both. I will update when I have a work around.

jhedstr2 Wed, 01/14/2009 - 23:54
User Badges:

Hi,


I didn't know about that issue you describe. A workaround could be to use Radius in WCS and TACACS+ for WLC. That should work.

Scott Fella Sat, 01/17/2009 - 09:33
User Badges:
  • Super Silver, 17500 points or more
  • Hall of Fame,

    The Hall of Fame designation is a lifetime achievement award based on significant overall achievements in the community. 

  • Cisco Designated VIP,

    2017 Wireless

The problem is that in ACS you can only specify one device to either use radius or tacacs. So if you are authenticating users in the wlc to use that ACS server, then you can't setup tacacs also. You need to setup the wlc to use radius.

marcelnjkoks Mon, 03/21/2011 - 05:37
User Badges:

For anyone searching for this, check the RADIUS shared key. Try something small and easy.

We found that having a complex key often causes problems. Test with test. 

Actions

This Discussion

 

 

Trending Topics - Security & Network