Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

ASA 55x0 error connecting to AAA (ACS 5.2)

ASA 55x0 error connecting to AAA (ACS 5.2)

Hi, we encountered a problem between

     CISCO ASA 5510

     CISCO ACS 5.2

If I have a downloadable ACL more long/deep of 68 lines for the user defined inside Identity Manager, it

keep in error.

ASA live log say that is unable to contact AAA

If I delete a line keeping downloadable ACL inside 68 lines, all go fine.

The service used is SSL VPN with Anyconnect 3

is it a referenced bug or is it a limit?

1 REPLY

ASA 55x0 error connecting to AAA (ACS 5.2)

Hello Alberto

I think there is a limit of  16 KB for the size of the downloadable acl. In your case , when you add more than 68 lines, it could be crossing the limit. What you can do here, instead of using seperate lines, go ahead and create object-group and use that in your downloadable acl config. something like follows

Regards

Harish.

211
Views
0
Helpful
1
Replies
CreatePlease to create content