Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ACS4.2 CSMon Log

Hi,

We are using the ACS4.2 in our network for the device TACACS authentication and for the VPN user authentication. ACS is integrated with AD. Also we have configured the service management (system configuration>Service management) to monitor the logon process. All These settings are there for more than three years now. Few days back we started getting the below log continously (atleast 10 in 1 min) under the ACS service monitoring log and also the ACS sending email alerts;  

''User CSMonTac has attempted to log into 127.0.0.1 from CSMON after the Account Lockout.''   (attached the screenshot)

We checked and couldnt find any account named CSMonTac , then we restarted the ACS and no luck..!

Did anyone faced this issue before..? Pls share if any idea.

Thanks in advance...

Rgds

Sudheer

708
Views
0
Helpful
0
Replies