Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
739
Views
0
Helpful
2
Replies

NAC 4.5 not performing ADSSO

rc.castillo
Level 1
Level 1

‎11-24-2009 12:30 AM - edited ‎02-21-2020 03:48 AM

Hi,

     I am running a NAC 4.5 platform on a network with 2 AD servers.  I have followed all the needed configuration and troubleshooting based on cisco documents, but ADSSO still doesn't work.  What am I possibly missing?  Time is synchronized running on a ntp server, have a valid ktpass, correct kerberos ticket shows on the kerbtray.  Still when my test pc logs on to the network, it is not performing SSO but asks for a local user account through the CCA.  Please help.  Thanks

Regards,

Dan

0 Helpful
2 Replies 2

Faisal Sehbai
Level 7
Level 7

‎11-26-2009 12:13 PM

Dan,

Please post your unauthenticated traffic policies.

Faisal

0 Helpful

manfernandez
Level 1
Level 1

‎11-29-2009 09:08 AM

Make sure that it is not Windows Server 2008 64Bit (not supported)  also Windows Server 2008 32 or 64 bit require a patch.

If you login into the CAS with the /admin and turn the logging up to 'Trace' on 'Active Directory Communication Logging".  Look for an error:

Unable to start server ... Client not found in Kerberos database (6)

This means you need to install Hotfix KB951191

Also: if you run the ktpass on the same user multiple times, you will have issues as well (per TAC) you will need to create a new user and use that one.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card