Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1012
Views
0
Helpful
1
Replies

ACS 5.3 RADIUS authentication failing - Active Directory Agent

calvincbehr
Level 1
Level 1

‎03-04-2012 08:16 PM - edited ‎03-10-2019 06:52 PM

Hi, I'm somewhat new to ACS and am trying to complete a migration from 4 to 5.3

Currently, I've got ACS joined to my (2003) domain, and it shows status connected (although the test connect fails).

I have aaa working without issue for TACACS, but all RADIUS authentication is currently failing. Logs show the message below:

"24401 could not establish connection with acs active directory agent"

I'm not seeing anything telling in the logs on the domain controllers. Any idea would be greatly appreciated!

Thanks,

-cb

Labels:
0 Helpful
1 Reply 1

calvincbehr
Level 1
Level 1

‎04-02-2012 01:38 PM

Just a note in case anyone runs into this - there was no issue with ACS or the domain. The cause of the problem was an incorrect shared secret on several of the RADIUS devices. This was overlooked as ACS was only providing active directory and active directory agent related error messages (instead of a shared secret / key mismatch error which ACS did provide with TACACS+ devices).

0 Helpful
Customers Also Viewed These Support Documents