Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1381
Views
0
Helpful
1
Replies

We are unable to manage our ACS

tanu
Level 1
Level 1

‎12-09-2009 01:53 AM - edited ‎03-10-2019 04:50 PM

Accidentally the power to the ACS server was switched off and then on again. But after the power on though the device came up successfully; we are not able to manage it.

We are unable to manage our ACS. We have a configuration back-up.

1)       by HTTPS. The cert can not be added manually on the browser in any way. Looks like an application error. Tried several different browsers.


ACS details:

CSACSE-1113-K9    Cisco secure ACS 4.x solution engine 1113 Appliance    CSACSE-1113-K9v01

when i try https:abc001:2002/

I get he following pop up error message:

Secure connection failed.

an error occurred during connection to abc001:2002. certificate type not approved for application.(Error code:sec_error_inadequate_cert_type)
---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
.the page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
.please contact the web site owners to inform this problem. Alternatively, use the command found in the help menu to report this broken site.

2) by SSH. xxxxx is the administrator account.

We can login but there are no commands available


abc001>help
command                             Description
--------------------------------------------------------------------------------
?                                List commands
exit                             Log off
help                             List commands
csdbsync -syncnow                RDBMS synchronization


abc001>?
command                             Description
--------------------------------------------------------------------------------
?                                List commands
exit                             Log off
help                             List commands
csdbsync -syncnow                RDBMS synchronization

2)Tried with a serial cable, but we only get some rubbish on the screen. We tried different serial cables. These cables work on other appliances (WLC controller and Cisco switches) but not on the ACS

Labels:
0 Helpful
1 Reply 1

kush.sri2001
Level 1
Level 1

‎12-09-2009 08:42 PM

Hi,

The issue which you are facing comes when you the certificate installed on the ACS is either not correct or has gone corrupt. You would not be able to install a fresh certificate on the ACS Appliance through console or SSH.

You can open a TAC case and send a backup of the ACS database, they might be able to correct the database. Otherwise the only other option is to reimage the ACS Appliance.

To access an ACS Appliance from the console, you can go to http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_solution_engine/4.2/installation/guide/solution_engine/instalap.html#wp1065399

To administer the ACS Appliance, take a backup etc., you can go to http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_solution_engine/4.2/installation/guide/solution_engine/admap.html


Regards,

Kush

0 Helpful
Customers Also Viewed These Support Documents