Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 

Frequent Disconnections between NAC Server and NAC Manager

Dear Friends,

I am facing a lot of disconnection issues between the NAC Server and the NAC Manager. While in the disconnection period the CAS shows as "Not Connected" within the CAM web console. the logs shows as "Not in sync". The users who are already logged in face no issues. But any new users face "Clean Access Server Could not connect to CLean Access MAnager <IP Address>". The only way to solve this is by doing a "service perfigo restart". this seems find if it occurs once in  a while, but it happens daily, sometimes with minutes.

We are not using a trusted CA cert in both CAM and CAS. but the initial "www.perfigo.com" one. But it works fine for us.

Thanks in advance and Best Wishes for New Year.

-- Rajiv

5 REPLIES
New Member

Frequent Disconnections between NAC Server and NAC Manager

What versions of the CAM and CAS?

Already tried to remove the certificates and put them back?

This problem started after some change?

Frequent Disconnections between NAC Server and NAC Manager

Hi,

CAM and CAS both 4 7 5. Tried removing the certs and putting them back. No changes in the configurations. Started giving this problem after a few months of usage. Lets say 5 months or so. Any ideas...

Re: Frequent Disconnections between NAC Server and NAC Manager

Anyone please...

Sent from Cisco Technical Support iPad App

New Member

Frequent Disconnections between NAC Server and NAC Manager

We struggled with this as well. Are you using high availability mode?

Ours finaly got working. Required several reboots to get working. Make sure the CS certificate of the CAS servers is based on the service IP of the high availability pair. And then import that to the CAM. In addition, when using CAM in HA, the certificate is also based on the service IP. and shared between the CAMs. The CAMs and CASs should be on different subnets and the trunk port to the CAS needs to carry the management vlan of the CAM.

Re: Frequent Disconnections between NAC Server and NAC Manager

We are not using HA, neither for CAS nor for CAM. And certs are fine. But still The disconnection happens. I wonder whether it will help if I get a valid cert from a CA.

Sent from Cisco Technical Support iPad App

639
Views
0
Helpful
5
Replies
CreatePlease to create content