We have two servers. We have set the servers to replicate. We have ensured that the shared secret for self on the primary and shared secret for the primary server on the secondary are correct. I get an error that states:
Outbound Replication Cycle started.
ACS "Secondary" has denied replication request.
Outbound Replication Cycle completed.
Do i need to make a change in the Distribution table of my primary server? THis is actually pointing to the primary server. I have the proxy distribution entry on the secondary pointing toward the primary.
You need to have all four entries, i.e, 2 entries on Primary (One for self, and other for Secondary ACS server). And 2 on Secondary (One for self, and other for Primary ACS server) with same shared secret key.
And for the time being if you have placed ACS servers under any NDG, move them to (Not Assigned).
As in 4.x version, if you have any key configured at NDG level, it will override the key at AAA Client/Server level.
And I guess I have answered your second query in Fail over thread?
I do not have any NDG yet. I have all this set up the same way as well as have the Proxy Distribution Table set up so that each is pointing to itself as a default. I am not sure where the issue lies. I do have a TAC case opened and will try it again with them on Monday. Thanks for the help.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :