Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1581
Views
0
Helpful
2
Replies

Message on ACS server

tvanginneken
Level 4
Level 4

‎05-27-2003 07:50 AM - edited ‎03-10-2019 07:19 AM

Hi,

I am getting this message on our ACS server:

" Radius extension DLL rejected user"

Does anyone know what this message means? It seems that it is not documented.

Regards,

Tom

Labels:
0 Helpful
2 Replies 2

ywadhavk
Cisco Employee
Cisco Employee

‎05-27-2003 08:03 AM

The error you are experiencing is a fairly broad one and could mean that you have an incorrect

username/pwd, or a mismatch with the communication between the ACS server and the windows domain if,

you are using External User Databases. Could you please confirm whether or not you are using a back

end to an external user database, in particular, a Windows domain? One thing that I have found

quite common in this circumstance is that the external user database is configured to check for

"Grant Dial-in Permission for user". If the user does not have this set (regardless of the fact

that this is not a dialin session), it will fail the authentication request.

By the way, what version of ACS is this?

Thanks,

yatin

0 Helpful

mhoda
Level 5
Level 5

‎05-27-2003 08:34 AM

Tom,

Please give us more info like:

-Version of ACS

-External database type ?

Also, need to see the auth.log file from your ACS Server. Please, go to your failed attempt file, get the username that failed and then search thru the auth.log file and paste the failed portion of the log. Should be able to provide you the direction.

Thanks,

Mynul

0 Helpful
Customers Also Viewed These Support Documents