i have aironet AP`s in the infrastructure, Cisco ACS 1113 (ACS v4.2) and clients are authenticated by radius against windows database.
All was working good. But after power crash was ACS engine down for 4 days and windows servers was down one day.
After these no authentication is occured. In failed attempts logs i see a message: "Unknown NAS Error" with this information:
Network access profile name - (unknown), NAS IP Address - 10.0.255.1 (IP address of ACS appliance)
Next i found solution from cisco:
Step 1 Verify that the AAA client is configured under the Network Configuration section.
yes it is:
AAA Client Hostname | AAA Client IP Address | Authenticate Using
WiFi | 10.0.255.2-255 | RADIUS (Cisco Aironet)
Step 2 If you have RADIUS/TACACS+ source-interface command configured on the AAA client, ensure that the client on ACS is configured by using the IP address of the specified interface.
On aironet is configured:
ip radius source-interface BVI1
Â ip address 10.0.255.2 255.255.0.0
Â no ip route-cache
Any suggestions where can be a problem?