Freuqent Windows AD User LockOuts with Cisco ACS

dumlutimuralp · ‎12-17-2009

Hi all,

We have a Windows domain aroung 800 users. We got a wireless 802.1x infrastructure and a VPN box which has been using Cisco ACS as the Radius authenticator.

We are experiencing massive Windows AD user lockouts from time to time. In one of those I noticed that CsAuth.exe is crashed on our Windows Cisco ACS server.

Ive searched this forum and couple of external sites thinking that may be someone have found out a relation between these issues.

Anyone has any comments or recommendations about where to look for ?

Ive already checked the "Failed Attempts" log files and everything seems normal ?

Thanks in advance.

Erick Delgado · ‎12-17-2009

Hi,

This can be an ACS bug.

What ACS version are you running? How often this happen? What is the DC version? Is this ACS for windows or ACS SE.

Regards,

dumlutimuralp · ‎12-17-2009

Thanks for your response.

It is ACS 4.0 and our AD is Windows 2003.

dumlutimuralp · ‎12-17-2009

Sorry accidentally hit reply

It happens every other month or so. It ıs ACS for Windows (Windows 2003 Server)

Erick Delgado · ‎12-17-2009

HI,

You can be hitting ddts CSCsc41129.

What kind of authentication do you use EAP-TLS?

Regards,

dumlutimuralp · ‎12-17-2009

Nope , just MS PEAP

Erick Delgado · ‎12-18-2009

Hi,

In that case I will suggest upgrading to the latest version it is know that ACS version 4.0 has some issues with services.

I seen many situations similar than your and the upgrade solved the issue.

Please open a TAC SR and request for the latest software.

Regards,

dumlutimuralp · ‎12-18-2009

Thanks a lot.

Appreciate it..