Cisco Support Community

Unable to get any hit counts for fail or pass attempts on Cisco Secure ACS server after the certificate is renewed

Core issue

In this issue, Cisco secure ACS fails to log any hits for pass or failed attempts after you renew certificate.


Complete these steps in order to resolve this issue:

  1. Ensure that you are logged on for both logs from System Configuration > Logging.

  2. Choose Network Configuration > Proxy Distribution Table > (Default). In the entry under Forward To column, make sure that the corresponding IP address for that entry is of the AAA server.

  3. Verify it in Network Configuration > Search. Type the name that was in the Forward To column at the TOP, and search. If it has different address, correct it and restart the services.

NOTE : If Proxy Distribution Table is not visible, choose Interface Configuration> Advanced Options, then check Distributed System Settings, and choose Submit.