ACS CSUtil error
Hello
I'm trying to run CSUTil as an administrator local (the server is in AD domain) and the foloowing error...
"Failed to initialize the crypto api.
Any idea?
3.3.1.11 ACS
Win2k3 SP1
Hello
The following url, said the same error message. Take a look and see if he can help you solve it:
Rgds,
AK
Tags: Cisco Security
Similar Questions
-
I tried to connect to my ACS 3.2 via the web interface server, but I get a connection error "protocol error connection failed", I added another user with administrative rights, but I get the same error. Have you seen this problem?
Thank you
Gilbert
This happens from time to time, to be honest I never checked into it too deeply because it's quite rare. Usually restarting the CSAdmin service solves it, but otherwise, by restarting the entire server should do the trick for you.
-
ACS 4.1 evaluation issues
I have problems with the ACS 4.1 on a Windows 2003 SP1 / SP2 server.
I can't add additional administrators to connect to the ACS. Error code in Internet Explorer: "error on page". I tried other machines, the problem remains the same...
Also, after a few seconds (30), the session hangs and I have to reconnect back... Error: "cannot display page". Is this a known problem and what can I do about it?
Thank you
Remco
First of all, make sure that you have JAVA Sun JRE 1.4.2_04 installed on the system with the browser. It is documented at:
-
Hi all
I was trying to restore the configuration to a TFTP server, but it fails.
VIC-acs01 / admin # repository restore ACE-Config-160922 - 1542.tar.gpg repository acs
Restore requires a restart of the ACS services. Continue? (yes/no) Yes
Start the restore. Please wait...
% of ongoing restoration: from restoration... 10% have completed
% of ongoing restoration: recover the repository backup file... 20% completed
GPG: decrypt_message failed: unknown system error
tar: this doesn't look like a tar archive
tar: backup/appcomponent/db/acs.db: not found in archive
tar: backup/appcomponent/db/acs*.log: not found in archive
tar: leave with State failure due to previous errors
% of current restore: backup data decryption... 25% completed
% Error: unable to complete the restore of the ACS: the backup file decryption failed. Key encryption incorrect or corrupted download of the repository)VIC-acs01 / admin # sh historic restoration
Thu Nov 10 20:06:16 PST 2016: ACE-Config-160922 - 1542.tar.gpg the repository repository restore: error - acs script error
Thu Nov 10 20:19:37 PST 2016: ACE-Config-160922 - 1542.tar.gpg the repository repository restore: error - acs script error
Thu Nov 10 20:28:36 PST 2016: ACE-Config-160922 - 1542.tar.gpg the repository repository restore: error - decrypt failed
Thu Nov 10 20:30:11 PST 2016: ACE-Config-160922 - 1542.tar.gpg the repository repository restore: error - decrypt failed
Thu Nov 10 20:34:00 PST 2016: ACE-Config-160922 - 1542.tar.gpg the repository repository restore: error - decrypt failed
VIC-acs01 / admin #.VIC-acs01 / admin # sh run | repo b
repository repository
URL of tftp://10.10.79.13/
!VIC-acs01 / admin # repository repository sh
% Protocol can't list directories
VIC-acs01 / admin #.Any help would be appreciated.
FC
Hey FK,.
Yes, you can add another repository.
Kind regards
Kanwal
Note: Please check if they are useful.
-
csutil.exe error in ACS 4.1 for Windows
Hello
When I try to list provider created the GBA-specific attributes by running csutil.exe - listUDV at the cmd prompt, I get the error 'cannot initialize schemelayer.
What could be the problem?
Hello
The error "can not initialize the SchemeLayer" usually when you're not
connected with the domain administrator account.
This error happens when the account does not have priv on the system.
Kind regards
~ JG
Note the useful messages
-
ACS health: internal server error
Hi all
We have improved our ACS server to 5.8.0.32.4 in the morning. After that when I tried to check the health of the ACS in follow-up and I get the error message internal from the report server. All services are running on the primary and secondary server.
Any help would be appreciated.
Thank you.
Hey Pratik,
We have above mentioned error, after installation of the patch or upgrade and immediately accessing the dashboard page. But it will not happen systematically.
Could you please check if we have problem with all the particular admins or admin?
If we see the question with all admins, then restart the only management and check once more.
Thank you
Catherine
-
ACS is indicating "no space left on device error".
Hello
We have acs 5.5.0.46.7, it's show error in cli
Cisco acs cannot make directory ' / var/run/screen/S-adminms ': no space is available on the device
Any idea?
Concerning
Looks like you are hit:
CSCuq36829 ACS 5.5 - / var fill up to 100%, causing instability on GBA
The workaround is necessary because it requires installation of root fix (for access to the operating system) and apply the fix it.
You can paste the output of ' disks to see the '?
-Jousset
-
Error of org.xml ACS 5.3 Exception when executing reports
Hello
5.3 GBA running on a device of 1121
When you run a report's RADIUS authentication, accounting, etc. is all report, I get the error attached image (org.xml.sax.SAXParseException...). I have not yet found a solution. I'm running another ACS 5.2 device that does not have this error
If the upgrade to a newer version will solve this problem, the license (5.3) will suffice.
Any help is appreciated
Kind regards
MOE Shea
Hello Mo,
I have this error either a browser problem, I recommend you watch the ACS 5.3 release notes and confirm if you are currently using a supported browser:
http://www.Cisco.com/c/en/us/TD/docs/net_mgmt/cisco_secure_access_contro...
A restart of services can take care of it as well in case you are using a supported browser.
Note: Please mark as answer as appropriate
-
Cisco ACS SE "set ip" error: could not set up new NETWORK card configuration.
Hello
I get the error "error: could not set up new NETWORK card configuration." When I try to set the IP ACS SE.
When I called into the device image and tried to do an initial installation, the IP to not hold after the restart and went back to the default value.
I went by NetPro and apparently it is a common problem. One person it is solved re-imaging unit, but who has not worked for me.
Someone there with a solid solution? I use NIC 1 FYI.
EDD.
Ed,
Please make sure that if ACS is associated with active before setting Ethernet connection
or change the IP address of your ACS system engineer.
Kind regards
~ JG
-
I'm aving 4.2 ACS for synchronization with the PDC running windows 2008, I see the error below in AUTH CS logs when a user attempts to authenticate via the external database in Windows:
AUTH CS newspapers: AUTH 05/24/2010 11:08:19 2100 49316 0 x 2 external DB [NTAuthenDLL.dll]: Windows authentication FAILED (error 6 L)
Any suggestions
Thank you
Hello
Win2008 is supported from ACS ver 4.2 patch 4 onwards, so you need to upgrade your ACS to 4.2(latest patch).
ACS 4.2.0.124 cumulative patch for windows can be downloaded from this link,
http://www.cisco.com/cgi-bin/tablebuild.pl/acs-win-3des
Also ACS is currently not supported on Win2008 R2 (ACS running on win2008 R2)
So make sure you are running acs 4.2.0 with latest patch or 4.2.1.
Regards,
~JGDo rate helpful posts
-
ACS 5.1 13030 GANYMEDE + authentication error Question
Hi all
I am trying to set up a new server GANYMEDE + and am trying to update all configurations of our network to point to the new server devices. Everything is fine looking up now, but on the ACS monitoring tool, two of our switches are constantly spamming '13030 request authentication GANYMEDE + lack a username' error. The network admin group have no problem is authenticating with these two switches and they confirm that it is not trying to connect. Does anyone know if ACS monitor will show any sauce to the IP addresses of these applications?
If you click on the detail in your authentication error message, you should be able to find the 'Remote-address' field, which should tell you the remote IP address.
If you haven't seen an IP in the address 'remote' field, you may need to check the console port / switch to see if something is connected to, what could cause the problem.
-
ACS 4.2 - internal error
Since yesterday, the newspaper has no authentication is showing Internal Error when people attempt to authenticate by using their AD credentials. Until a few weeks ago, the ACS (windows 2003 SP2) server has been configured with two controllers/Server DNS - one was Win2003 and the other was Win2008.
The controller Win2003 was demoted and replaced by a controller 2008-R2-, but this internal error problem appeared only yesterday.
If I restart the ACS - normal authentication server using AD recover during a short period of time - but then the problem reappears.
Any ideas?
Hello
The following link describes the migration of ACS 4.2 to 5.2 ACS.
I hope this helps.
P.S.: Please mark this thread as answered if you feel that your query is resolved. Note the useful messages.
-
EAP - TLS in ACS 5.2 error
Hello
I have configured the RADIUS to dot1x a 5.2 ACS. When I tried to connect a user to an active switch of dot1x port, I get the following error in the RADIUS.
Description
Result of the identity strategy is set for password based authentication methods but received certificate authentication requestTroubleshooting steps
Check the appropriate service in the Access Service and its identity source in Access Services > Sysaccess > identity >. This error occurs when the identity source is configured for password based authentication received a certificate of authentication based request.The switchport configuration is:
switchport access vlan 810
switchport mode access
authentication event failure action allow vlan 132
no response from the authentication event action allow vlan 810
Auto control of the port of authentication
dot1x EAP authenticator
dot1x max - req 3
Check IP source port-security
end
Please help correct this GBA 5.2
Kind regards
Abhishek
Ok
have you checked the attribute you want to ACS to check in the package from the client comes.
More importantly, select the certificate profile as store of identity under the identity of policy - name of the service of access - Access - select.
BR,
Tushar Gaba.
-
Cisco ACS 4.2 internal error
Good evening. I have problem with ACS 4.2 and AD, autification on PC I have an internal error. In RDS.log, I have this line:
Error authentication UDB_NT_UNKNOWN_ERR (DOMAIN)------(USERNAME) - no response sent to the NAS
I already checked coat of physhic problems, dot1x switch configured, agent remote ciscosecure installed.
Hello
Is the file also considered Auth.log "Windows authentication FAILED (error 6L)" for the same RDS timestamps and failures?
Also, what version of ACS (include the Patch) are you using? You log on Windows Server 2003 or 2008 or 2008 R2 AD?
NOTE: Remember that 2008 R2 AD is not supported by any 4.x version of ACS.
Also, make sure that you have complied with the following requirements:
Check that apply to you as there are has two options: Member Server Windows or a Windows domain controller.
Kind regards.
-
ACS 5.3 - change device group or location error
I am trying to move a device from the default location to a subgroup and get the following message when I try (be it with IE or Firefox)
This failure has occurred: Index: 0, size: 0. your changes have not been saved. Click OK to return to the list page.
It also gives me the same error if I try to change the default device for a subgroup. I don't know that I could do before. The construction of the ACS is (installing VMWARE):
Deploying applications engine Cisco OS version: 1.2
ADE-OS Build Version: 1.2.0.228
ADE-OS System Architecture: i386Copyright (c) 2005-2009 by Cisco Systems, Inc.
All rights reserved.
HostName: ACS1Version information for the installed applications
---------------------------------------------Cisco ACS VERSION INFORMATION
-----------------------------
Version: 5.3.0.40
The identifier for the internal version: B.839I'm he suspect a problem reading/writing with the database or a corruption of the database. Can someone enlighten me on how to fix it please?
I stopped and started the acs application via the console application status and see the acs has this to say about himself.
ACS1 / admin # display the status of the acs application
Role of the ACS: PRIMARY
Process of database ' ' running
'Management' running process
'Runtime' running process
"View-database" running process
"View-jobmanager' running process
"View-alertmanager' running process
"Notice-collector' running process
"View-logprocessor' running processMel
Does this happen to small number of network devices or the entire
If the former, then I found the following CDETS
CSCtw59271 Corruption of device random network after upgrade of ACS 5.2 to 5.3
Which includes the following workaround solution
Symptom 1: Remove and re-add the AAA client
Symptom 2: changing the secret shared GANYMEDE + of the network device, enter the same key again and save the network device.
> Use when GANYMEDE + has been used
There are a few important fixes related to the upgrade of issues in patch 5 and later versions for ACS 5.3. While they didn't wear on NDs, I recommend not to install this patch
Maybe you are looking for
-
iPhone 5 can support Bluetooth 4.1?
iPhone 5 can support Bluetooth 4.1? New Bluetooth wireless headsets were 4.1 and 5 of the Iphone with iso 9.3.2 can support?
-
Déclassé recovery of Yosemite to Lion, how to return to Mountain Lion
Hi all, I just upgraded to Yosemite of Mountain Lion. Virtually nothing would open esp all my applications Adobe CC (I am a designer, if it does not work!). I followed some advice from brill to get back to the system of the original system OSX (which
-
No I couldn't play xbox games on my laptop how to #_
back, does that mean my phone is brocken
-
Is there a way to set the header and footer of page up/down banners?
We use the Apex 4.2, recently a new requirement came for our standard header and footer banners to be attached to the page. Does anyone know how to do this? I searched the forum and have not found something that works so far.We use the 24 theme, cu
-
How to play SWF locally on an Android Tablet
HelloI made a flash as2 game.android Tablet I already install the flash drive and swf Viewer pro App swf play but click on objects do not work properly.