WLC keep on authenticate issue

yong khang NG · ‎01-10-2012

Hi all,

Having issue with WLC 5508 using ACS 5.2 tacacs+ protocol to do device management

The problem statement is after key in the username and password on the WLC login page, it is endlessly prompt for authentication on WLC.

Whilst on ACS monitoring and reporting i able to see it is successfully authenticated, shown at AAA protocol > TACACS+ Authentication

On ACS, the shell profile for this is setting role1 , value = ALL.

Can please suggest or any idea i can make it with priviledge to administering the WLC, thanks

The firmware setting in use as below:-

1. WLC 5508 with firmware 7.0.222.0

2. ACS version 5.2.0.26

Thanks

Noel

camejia · ‎01-10-2012

Hello,

I am attaching an example. I did notice that you are using "role1". Can you change it to "Role1" with capital R?

Hope this helps.

Regards.

yong khang NG · ‎01-10-2012

Hi Mejia,

Thanks for the reply !!!

I do according your instruction and found tihs log from the WLC.

*emWeb: Jan 11 10:57:44.401: %EMWEB-1-LOGIN_FAILED: ews_auth.c:2105 Login failed for the user:noel. Service-Type is not present or it doesn't allow READ/WRITE permission..

Anything i can tune on the ACS or WLC?

Please advice.

Thanks

Noel

camejia · ‎01-11-2012

Hello Noel,

Have you confirmed on the ACS Logs that the user "noel" is hitting the appropriate Rule which assigns the Role1=ALL?

Can you shared screenshots of the ACS configuration (Shell Profile, Access Service Rule, Report Details by clicking on the magnifier)?

Will wait for your response.

Regards.