Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Catalyst 3524 Lost AAA Authentication Ability

I am running a 3524 switch with c3500XL-c3h2s-mz-120.5-XU.bin IOS loaded. I was backing up the config using Solarwinds Cirrus Config manage with Cisco ACS AAA credentitals. Everything worked fine and then stopped. I can no longer log into the switch with my AAA credentials and have to access it with a local username and enable. I checked the config and nothing changed. It was previously running the same code but XW release but a code change did not help. Neither did a switch reboot. This happended to one other 3524 which all of a sudden start authentication to AAA after about a week of failure. My ACS server is working fine with 100+ device authentication successfully. What is up with the 3524? Debug logs for AAA don't show any useful except a failure for authentication which I already know. I have other 3542 switches with no problems.

4 REPLIES

Re: Catalyst 3524 Lost AAA Authentication Ability

What does ACS say?

New Member

Re: Catalyst 3524 Lost AAA Authentication Ability

The only ACS message I receive is under failed attempts. ACS records a message type of Unknown NAS and a network access profile name as unknown.

New Member

Re: Catalyst 3524 Lost AAA Authentication Ability

I found the problem. Someone remove the switch reference in ACS as a client. It was not authorized.

Hall of Fame Super Silver

Re: Catalyst 3524 Lost AAA Authentication Ability

Pete

Thanks for posting back to the thread and indicating that you had resolved the problem. It makes the forum more useful when people can read about a problem and can read what caused the problem.

In reading your original post when you said that nothing had changed on the switch then my instinct was to ask what had changed on the server. Thanks for confirming that it was a change on the server that caused the problem.

HTH

Rick

196
Views
0
Helpful
4
Replies
CreatePlease to create content