If authentication requests are getting to the server then it sounds like most of the router config is in place. If there are entries in the failed attempts logs then there should be an indication of what the error is. What does the failed attempts log have for the error for these attempts?
In my experience the most common errors are not having the same value for the shared key between the router and the server or having the authentication request source address from the router not match the address configured in ACS. What do the failed attempt logs say about the error?
error are "CS password invalid" for local users of ACS and "External DB user invalid or bad password" for the AD users. Same users are being used for 802.1x authenication, users are authenticated succesfully.
The title in the original post indicates that this is dialup. Can you tell us a bit about the dialup and how it is setup. And can you post the appropriate parts of the router configuration? In particular I am wondering whether the router may be using PAP or CHAP for PPP authentication.
And would I be correct in assuming that in the failed attempts report that it is showing the correct ID of the user when it is reporting that password invalid or user invalid?
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...