ACS 5.1 13030 GANYMEDE + authentication error Question
Hi all
I am trying to set up a new server GANYMEDE + and am trying to update all configurations of our network to point to the new server devices. Everything is fine looking up now, but on the ACS monitoring tool, two of our switches are constantly spamming '13030 request authentication GANYMEDE + lack a username' error. The network admin group have no problem is authenticating with these two switches and they confirm that it is not trying to connect. Does anyone know if ACS monitor will show any sauce to the IP addresses of these applications?
If you click on the detail in your authentication error message, you should be able to find the 'Remote-address' field, which should tell you the remote IP address.
If you haven't seen an IP in the address 'remote' field, you may need to check the console port / switch to see if something is connected to, what could cause the problem.
Tags: Cisco Security
Similar Questions
-
GANYMEDE + authentication errors
I have problems to GANYMEDE + AAA working with my 3560 switches. I set up users, groups, and NDG on ACS SE, as per GBA CS course material and triple checked my keys to make sure they match. I have attached the debugging switch of authentication, authorization, and Ganymede. Can someone please tell me what I'm doing wrong?
Oh, if its SE which is not working.
To do this, ACS---> configuration network ===> table Proxy Dis---> click default ===> if you see delivenrance 1 to the aaa Server---> drag it to 'Prior to'---> and what is there under forward to---> Drag it server aaa--> submit + apply.
It should work now.
If you do not see distribution proxy option then go to GBA--->---> advanced option interface configuration---> enable the distributed array.
Kind regards
~ JG
-
GANYMEDE + authentication on Juniper screen OS using ACS 5.3
GANYMEDE authentication and authorization passed on ACS5.3, but enter username and password security (Juniper SSG5) gives access denied, joined Ganymede cfg.
the value id GANYMEDE + auth-server 1
Set-server GANYMEDE + 10.10.xx.yy server name
put server GANYMEDE +-type of admin account
Set-server GANYMEDE + type Ganymede
Set-server GANYMEDE + secret Ganymede xxxx
the value auth-server GANYMEDE + Ganymede port 49
the admin server GANYMEDE value +.
Set admin auth distance primary
Remote admin auth root set
Set admin privilege get set external auth-server GANYMEDE + id 1
Set-server GANYMEDE + 10.10.xx.yy server name
put server GANYMEDE +-type of admin account
Set-server GANYMEDE + type Ganymede
Set-server GANYMEDE + secret Ganymede xxxx
the value auth-server GANYMEDE + Ganymede port 49
the admin server GANYMEDE value +.
Set admin auth distance primary
Remote admin auth root set
define outer-get administrator privilegesPlease advice
I guess you posted a screenshot. I'm looking forward to having the file can be downloaded for analysis.
~ BR
Jatin kone* Does the rate of useful messages *.
-
Failure of GBA 4.2 GANYMEDE + authentic. Incompatibility of keys
I have configured 10 switches(C3750-ADVIPSERVICESK9-M) of layer 2, Version 12.2 (40) SE), use GANYMEDE +. They are all using the same key and work correctly. I went to another switch 3750 located through a point-to-point circuit, software C3750 Cisco (C3750-IPBASEK9-M), Version 12.2 (35) SE5. I entered the configuration routine and then entered the key and tried to connect as a user and get authentication failed. I checked the server and see key discrepancies in the reports and activity, the attempt failed. I've removed the key, copied and pasted from Notepad, still does not work. Removed the switch in the network device group ACS and then re - he added, stuck a new key, without special characters. No go.
Here is the config.
AAA new-model
!
!
AAA of default login authentication group Ganymede + activate
local NO_AAA AAA authentication login
the AAA authentication enable default group Ganymede + activate
AAA authorization exec default group Ganymede + authenticated ifGanymede IP source interface FastEthernet0/0
GANYMEDE-server host 10.1.1.1
RADIUS-server key 0 itspassword
RADIUS-server application madeInitially, the password is encrypted, so I changed it to erase the text by typing the password without the 0 and with 0. None worked. Also removed encryption service to see if that would do anything.
I usually have SSH for router, so I changed it to accept telent. That did not work. Changed SSH, reset the rsa keys and modified so that it uses SSH2, which did not work.
Here's what I get from newspapers
August 12 at 11:43:24: TAC +: send worm package AUTHENTIC/START = 192 id = 97563278
August 12 at 11:43:24: TAC +: using Ganymede server-group "Ganymede +" list by default.
August 12 at 11:43:24: TAC +: opening TCP/IP 10.1.1.1/49 Timeout = 5
August 12 at 11:43:24: TAC +: handle opened TCP/IP 0x3663CA0 to 10.219.1.1/49 using the 10.2.2.254 source
August 12 at 11:43:24: TAC +: 10.1.1.1 (97563278) AUTHENTIC/START/CONNECTION/ASCII queued
August 12 at 11:43:25: TAC +: (97563278) AUTHENTIC/START/CONNECTION/ASCII processed
August 12 at 11:43:25: TAC +: received bad AUTHENTIC package: length = 6, should 80467
August 12 at 11:43:25: TAC +: invalid package AUTHENTIC/START/CONNECTION/ASCII (control keys).
August 12 at 11:43:25: TAC +: connection TCP/IP closing 0x3663CA0 to 10.1.1.1/49
August 12 at 11:43:25: TAC +: using Ganymede server-group "Ganymede +" list by default.
August 12 at 11:43:37: TAC +: send worm package AUTHENTIC/START = 192 id = 1015854339
August 12 at 11:43:37: TAC +: using Ganymede server-group "Ganymede +" list by default.
August 12 at 11:43:37: TAC +: opening TCP/IP 10.1.1.1/49 Timeout = 5
August 12 at 11:43:37: TAC +: handle opened TCP/IP 0x366AF24 to 10.1.1.1/49 using the 10.2.2.254 source
August 12 at 11:43:37: TAC +: 10.1.1.1 (1015854339) AUTHENTIC/START/CONNECTION/ASCII queued
August 12 at 11:43:38: TAC +: (1015854339) AUTHENTIC/START/CONNECTION/ASCII processed
August 12 at 11:43:38: TAC +: received bad AUTHENTIC package: length = 6, should 79092
August 12 at 11:43:38: TAC +: invalid package AUTHENTIC/START/CONNECTION/ASCII (control keys).
August 12 at 11:43:38: TAC +: connection TCP/IP closing 0x366AF24 to 10.1.1.1/49
August 12 at 11:43:38: TAC +: using Ganymede server-group "Ganymede +" list by default.I watched autour forum for about 4 hours, try all other options that were given to other people with a similar problem. The last key, in that I put has 123456. You can not fat finger that is. Switch journal said check the key, the firewall is configured to allow all traffic from the AAA client.
Hi green2003 mg,.
The substitution of key group (the NDG where your switch belongs to) the button. Have you checked that one?
Greetz,
Julia
-
RADIUS and GANYMEDE + authentication
We authenticate our systems through dot1x. I also need to be able to authenticate our Cisco admins using the same ACS server. I see how to configure a switch to make the two GANYMEDE + and RADIUS, but I do not see how implement GBA to allow a switch to use GANYMEDE + and RADIUS.
Can someone give me a pointer?
Thank you
You need to put in place once the authentication on the switch.
AAA authentication login default group local Ganymede
Group AAA dot1x default authentication RADIUS
AAA authorization exec default group Ganymede + authenticated if
Group AAA authorization network default RADIUS
Cisco RADIUS-server host 2.2.2.2 keys
Cisco GANYMEDE-server host 2.2.2.2 keys
The GBA, you must add the switch twice.
ACS---> network configuration---> add aaa-clinet
Host name switch1
IP: 3.3.3.3
With the help of authentic: RADIUS IETF
Add another switch
SWITCH2 host name
IP: 3.3.3.3
With the help of authentic: Ganymede +.
Kind regards
~ JG
Note the useful messages
-
IClound update on Windows 7. When I try to login to iCloud, I get an authentication error.
I have ipdated iClound and can connect via a browser. But when I try to connect to the iCloud app I get an authentication error.
I already tried to uninstall iClound and reinstall it again.
Any other ideas?
XR. Robert *.
< personal information under the direction of the host >
requirements to iCloud for one PC is Windows 10 > system requirements for iCloud
-
Portege M500: Game "Sims 3" disc authentication error is displayed
Hello
I have a laptop Portege M500, which meets all the conditions for the new Sims 3 game.
I was able to install the game without a problem, but when I try to play a 'disc authentication error' message appears.
It seems that there is a problem with this game on Toshiba laptops, especially those with Mat * one material.
My laptop has a CARPET * a DVD-RAM UJ-842.
Please can someone help?
Hello
I doubt that there is something wrong with s for laptop hardware.
I goggled for the message: authentication failure drive and in most cases, the error appears in the Sims 3 game.You use an original Sims 3 game? Or it s just a copy?
I read a few details on the various pages and looks like the error appears with a pirate copy of movies or games...
-
Can what iCloud password I use to configure my e-mail client? I get an authentication error.
While trying to set up my email client (non-Apple) to receive and send an email to my iCloud account, I get an authentication error when using my AppleID password.
I tried to reset my AppleID password, but the password is always a failure when you try to configure my e-mail client. I even called Apple Support today where they told me that the iCloud email password should be in sync with the AppleID password since the iCloud email is simply an alias for it. After 25 minutes, they told me that I must use just the Apple Mail client instead.
I finally found the solution tonight when looking through the manage your site Apple ID. You must create a password App specific to your e-mail client:
- go to https://appleid.apple.com/account/home
- Sign in with your ID AppleID and password
- Once the page is loaded, click on the link 'Edit' in the Security section
- You should now see a section for App specific passwords
- Click the "generate Password... »
- Enter a name (I used my name to email client - Unibox)
- Click on create
Apple will generate a password you will use when you set up your email client. Use this new password instead of your AppleID password.
-
of authentication error code 0xc00002fd
I'm running on Windows XP sp3 in my machine and tries to connect remotely to a Windows 7 computer I get a 0xC00002fd error "an authentication error has occurred" when you try to connect to the Windows 7 computer. machines, I activated CredSSP according to MS kb article 951608. Give me suggestion
Hi premjitmohanty,-Are the computers in a domain environment?If so, I recommend you post your query in Technet Windows XP IT Pro Forums for assistance on this issue.Here's a similar post which might be useful: -
HI am kouadio.
Then connect to remote desktop of my PC giving credentials he strikes me an error like
"An authentication error has occurred. There is no such thing as the security package.
Please can someone help me and tell me the solution for this.
Thank you
Kouadio
Original title: Remote Desktop error
Hi Steve,.
Provide us additional information to help you better with this issue:
- You did changes to the operating system before this problem?
- Your device is connected on a network domain or a Windows Server?
- Exactly how you try to access the remote desktop?
If your device is connected to a domain network / server Windows, please post your request in the sub forums. We have a dedicated team for help you with this problem.
Otherwise, you can view the Microsoft Help article below and check if it helps.
Connect to another computer using Remote Desktop connection
It will be useful. Get back to us with an updated status of the connection to the remote desktop, we will be happy to help you.
Thank you.
-
Cisco ACS 5.1 and RSA Authentication Manager 6.1
Hi all
We recently had a Cisco Secure ACS 1120 and I improved the Unit 5.1 5.0 with all your support
Now, I need to integrate Cisco ACS 5.1 with RSA Authentication Manager 6.1. I have config file of RSA ACE Server successfully downloaded and exported to 1120 ACS.
I also added as NetOS Agent ACS in the RSA server during the process, I found a few warnings. The ACE Server is not able to resolve the IP address to the name (is it necessary?).
I have not created any file of secret key for communication between FAC and RSA and I used encryption is FOR.
Now, when I log into ACS and search for devices in the identity store sequences I am not able to get Sever Token RSA.
Let me know what was wrong, where can I fix and also please tell me what is the communciaction between the RSA and ACS?
Hoping that you guys help me as usual when I'm in a hurry...
Sree
Were you able to successfully create the RSA identity server. After selecting the sdconf.rec and you press on submit what happened? The RSA instance created OK?
If you go to
Users and identity stores > external identity stores > RSA SecurID Token servers, what do you see in the list?
-
When I try to publish, I get an error that says: "an unknown authentication error occurred with your AdobeID. (SHARED_UNKNOWN_ERROR)
You can try the solution in this discussion?
An unknown authentication error occurred using your Adobe ID (AUTH_UNKNOWN_ERROR)
-
When I try to publish the site I made in the "Muse" for Business Catalyst I get the following error "Validation" Message:
An unknown authentication error occurred with your Adobe ID
(SHARED_UNKNOWN_ERROR:21)
I have published my site business Calalyst before. You know a way to fix this?
It is an authentication error, I think that you have already tried but if not then please try the following steps:
-Disconnection of Muse > end process/Force Quit Muse
-Disconnection of the CC > end process/Force Quit Muse
-Open CC > sign in
-Muse open
-Create a new site > publish BC
Thank you
Sanjit
-
An authentication error occurred using your identification code Adobe deconnectez_ you and restart Muse and connect you... nothing has changed. Under preferences to Muse I see the username and password correct, but under "switch account", I see my old username. Attempt to rewrite with the new username and pswrd is not allowed.
Can anyonehelp me?
On click to change the account it should allow you to delete the existing account and add new.
Thank you
Sanjit
-
Get an unknown authentication error occurred using Adobe ID (shared_unknown_error:80. What's wrong?
Get an unknown authentication error occurred using Adobe ID (shared_unknown_error:80. What's wrong?
Hello
This occurs when ID ID Adobe and BC is out of sync.
Please Muse and sign again and you should be all set.
1. click on help > log out
2. once disconnected the Muse to quit smoking.
3 recovery Muse and connect with Adobe ID and password (if prompted) and you should be all set.
Concerning
Vivek
Maybe you are looking for
-
V13 Firefox slow to access the voice mail or google google works very well in internet explore
I just updated firefox to v13 and now its really slow to access the google mail and google voice. I get a message that it is connect to google, but nothing happens. works fine on internet explore. other web sites seem to work end
-
Portege M205-S809-PXE-E61 Media Test failure PXE - M0F error
I replaced (what I thought was) a HD on my Portege M205-S809 failure (I was getting the error "PXE - E61 Media Test failure PXE - M0F").I put in the HD and turned on the laptop to get the same error. My intention was to reistall the BONES of the reco
-
Best video card for Satellite A100 driver needed
Hello I have an old Toshiba Satellite A100... and I installed the ATI omega for best performance drivers but it s not working, crash games overheating I believe...I wonder if there are any other drivers from other series of Toshiba Satellite that wou
-
Mac mini el capitan "sleep next failure experienced a problem.
I just bought a new mac mini with El Capitan installed, I transferred all my software and back up files on the old Mac mini via a time machine. Since then I've been finding this message once the computer has been idle: "sleep next failure experienced
-
My windows media center vista has all of a sudden start to turn off randomly and restart by itself, about 3 weeks ago. Now, he has lost his. When I'm going through orders, no sound. Video games, no sound. I can still get sound for mp3, but not vi