Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

No username in Radius logs if authentication fails

I'm running ACS v 5.1 and have noticed that it an autheication fails the log doesn't show the username it there is a failure with the authentication, but if the autheication is successful the username shows up.  Does anyone know how to make it so the failure messages are of value because it shows the username?

Here is an example:

Authentication Summary

Logged At:

June 20,2012 1:01:43.270 PM

RADIUS Status:

EAP session timed out : 24415 User authentication against Active Directory failed since user's account is locked out

NAS Failure:


Username:

MAC/IP Address:

Network Device:

  :   : 

Access Service:

Default Network Access

Identity Store:

AD1

Authorization Profiles:

CTS Security Group:

Authentication Method:

PEAP(EAP-MSCHAPv2)

1 REPLY

No username in Radius logs if authentication fails

Hi can you post the entire error message, at time the eap session times out before the handshake is complete, once the handshake completes then the users credentials are sent through the tunnel where authentication occurs.

Thanks,

Tarik

Tarik Admani *Please rate helpful posts*
430
Views
0
Helpful
1
Replies
CreatePlease to create content