Solved: ACS Appliance Remote Agent Problem

Dominic Stalder (old profile) · ‎04-05-2009

Hi there

we have te following situation:

- 2 x ACS SE's

- 2 x ACS Remote Agents on Member Servers

- 2 x ASA's

We would like to authenticate the VPN users connecting to the ASA's via the ACS and the active directory.

I configured the remote agent following this link:

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_solution_engine/3.3/installation/guide/remote_agent/rawi.html#wp289426

But we are not able to fetch the active directory groups in the acs gui --> External User Database > Database Group Mappings > Active Directory > New Configuration.

On the Domain Controller we get the errors ID 1030 and 1058, had someone these problemes too?

Thanks in advance and regards

Dominic

Jagdeep Gambhir · ‎04-06-2009

Most likely it is a Permission issue. Which OS and SP you are using.

Did you try to run remote agent using LOCAL account instead of service account you created?

Regards,

~JG

Do rate helpful posts

View solution in original post

Jagdeep Gambhir · ‎04-06-2009

Most likely it is a Permission issue. Which OS and SP you are using.

Did you try to run remote agent using LOCAL account instead of service account you created?

Regards,

~JG

Do rate helpful posts

Dominic Stalder (old profile) · ‎04-06-2009

Hi JG

We have MS Windows Server 2003 with SP2. At the begining, the service was running as a local admin, then we had access to the AD, but we had some strange issues: after a short time (~1 Day) of zero authentication requests, the first request used about 2 minutes to get back to the ACS.

We debugged the way from the ACS to the remote agent, it must have been on the server it self.

Regards

Dominic