Cisco Support
English
Feedback Help
Cisco Support Community
Register
cancel
turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
frodestra
frodestra
Community Member
‎05-29-2008 04:20 AM
‎05-29-2008 04:20 AM

Authenticating Juniper WX over Cisco ACS 4.1

Hi, I'm trying to authenticate Juniper WX WAN Accelrator over Cisco ACS 4.1 using RADIUS.I get the juniper device to communicate with the ACS server, but cannot log in with my RADIUS user/password

Under ACS Reports and Activities - Failed Attempts, I get Authentication Failure Code 'ACS password invalid', when I log in with the CORRECT RADIUS user/password

and

when I log in with the Juniper device local user/pass OR any other arbitary user/pass I get Authentication Failure Code ' External DB is not operational'

Does anyone know what could cause the problem?

Thanx for your replies!!

Frode

0 Helpful
Reply
2 REPLIES
darpotter
darpotter Silver
Silver
‎05-29-2008 10:41 AM
‎05-29-2008 10:41 AM

Re: Authenticating Juniper WX over Cisco ACS 4.1

Sounds like a classic case of the shared secret not being the same on both ends. Its so easy to mess that up and people will swear they are identical only to have it work when they re-enter them :)

Also, from the second case it looks like you have the unknown user policy only partially configured, eg enabled but no working external db.

0 Helpful
Reply
frodestra
frodestra
Community Member
‎05-29-2008 11:23 PM
‎05-29-2008 11:23 PM

Re: Authenticating Juniper WX over Cisco ACS 4.1

Hi, I've tried re-entering the shared keys and the user password, but I still get the same error message.

I wondering if the WAN Accelrators required its own set of RADIUS dictionary files, to work with the ACS, but I cannot find such an option in the documentation

(I have my Cisco Routers & Switches working perfectly on TACACS+, so there can't be a pro blem with the ACS)

0 Helpful
Reply
Latest Documents
Snort IPS on ISR, ISRv and CSR - Step-By-Step Configuration
Created by Kureli Sankar on 04-19-2018 11:25 AM
0
0
0
0
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin... view more
Upgrade Chassis Manager (FXOS)
Created by Jeet Kumar on 02-23-2018 02:51 AM
2
15
2
15
    Login to the FXOS chassis manager. Direct your browser to https://hostname/, and log-in using the user-name and password.     Go to Help > About and check the current version:    Check the current version availa... view more
ASA 5506-X with ipv6 no access to internet
Created by Klaxel on 02-08-2018 01:25 AM
3
5
3
5
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6. In Syslog I also se... view more
All Documents
328
Views
0
Helpful
2
Replies
CreatePlease to create content
Discussion
Blog
Document
Video
Popular Blogs
AnyConnect Certificate Based Authentication.
Created by Marvin Ruiz on 08-27-2012 05:20 PM
36
70
36
70
BLOG (No Title)
Created by athukral on 06-14-2011 04:23 AM
15
35
15
35
Wireless Hacking
Created by Anim Saxena on 01-24-2013 07:56 AM
2
20
2
20
All Blogs