Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
356
Views
0
Helpful
1
Replies

Problems with ACS not Authenticating 3rd parties through VPN concetrator

darrengrey
Level 1
Level 1

‎03-29-2007 03:00 AM - edited ‎03-10-2019 03:03 PM

Hi all

I have recently moved from ACS V3.2 to V4.0 this has not been without it's challanges and has not been as seemless as I expected.

The main issue we have is our 3rd party access from our Cisco 3000 VPN concentrator.

The problem I am having is under the section Group Mappings for Domain -

I have Selected my NT Group and Selected my Cisco Secure Group.

When my third parties try to connect under failed attempts I get this error -

DACL request from device is not acceptable

However when I change the Cisco Secure Group to DEFAULT - I get authenticated.

I have spent hours trying to figure this out does anyone have any ideas.

Thanks in Advanced

Labels:
0 Helpful
1 Reply 1

Vivek Santuka
Cisco Employee
Cisco Employee

‎03-30-2007 09:06 AM

Hi,

Do you have the proper Downloadable ACL configured in the group ?

It looks like ACS is rejecting the DACL request made by the Concentrator.

Regards,

Vivek

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents