ACS CSUtil error

Similar Questions

• ACS connection error

  I tried to connect to my ACS 3.2 via the web interface server, but I get a connection error "protocol error connection failed", I added another user with administrative rights, but I get the same error. Have you seen this problem?

  Thank you

  Gilbert

  This happens from time to time, to be honest I never checked into it too deeply because it's quite rare. Usually restarting the CSAdmin service solves it, but otherwise, by restarting the entire server should do the trick for you.

• ACS 4.1 evaluation issues

  I have problems with the ACS 4.1 on a Windows 2003 SP1 / SP2 server.

  I can't add additional administrators to connect to the ACS. Error code in Internet Explorer: "error on page". I tried other machines, the problem remains the same...

  Also, after a few seconds (30), the session hangs and I have to reconnect back... Error: "cannot display page". Is this a known problem and what can I do about it?

  Thank you

  Remco

  First of all, make sure that you have JAVA Sun JRE 1.4.2_04 installed on the system with the browser. It is documented at:

  http://www.Cisco.com/en/us/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.1/installation/guide/Windows/install.html

• Cannot restore the ACS server

  Hi all

  I was trying to restore the configuration to a TFTP server, but it fails.

  VIC-acs01 / admin # repository restore ACE-Config-160922 - 1542.tar.gpg repository acs
  Restore requires a restart of the ACS services. Continue? (yes/no) Yes
  Start the restore. Please wait...
  % of ongoing restoration: from restoration... 10% have completed
  % of ongoing restoration: recover the repository backup file... 20% completed
  GPG: decrypt_message failed: unknown system error
  tar: this doesn't look like a tar archive
  tar: backup/appcomponent/db/acs.db: not found in archive
  tar: backup/appcomponent/db/acs*.log: not found in archive
  tar: leave with State failure due to previous errors
  % of current restore: backup data decryption... 25% completed
  % Error: unable to complete the restore of the ACS: the backup file decryption failed. Key encryption incorrect or corrupted download of the repository)

  VIC-acs01 / admin # sh historic restoration
  Thu Nov 10 20:06:16 PST 2016: ACE-Config-160922 - 1542.tar.gpg the repository repository restore: error - acs script error
  Thu Nov 10 20:19:37 PST 2016: ACE-Config-160922 - 1542.tar.gpg the repository repository restore: error - acs script error
  Thu Nov 10 20:28:36 PST 2016: ACE-Config-160922 - 1542.tar.gpg the repository repository restore: error - decrypt failed
  Thu Nov 10 20:30:11 PST 2016: ACE-Config-160922 - 1542.tar.gpg the repository repository restore: error - decrypt failed
  Thu Nov 10 20:34:00 PST 2016: ACE-Config-160922 - 1542.tar.gpg the repository repository restore: error - decrypt failed
  VIC-acs01 / admin #.
  

  VIC-acs01 / admin # sh run | repo b
  repository repository
  URL of tftp://10.10.79.13/
  !

  VIC-acs01 / admin # repository repository sh
  % Protocol can't list directories
  VIC-acs01 / admin #.

  Any help would be appreciated.

  FC

  Hey FK,.

  Yes, you can add another repository.

  Kind regards

  Kanwal

  Note: Please check if they are useful.

• csutil.exe error in ACS 4.1 for Windows

  Hello

  When I try to list provider created the GBA-specific attributes by running csutil.exe - listUDV at the cmd prompt, I get the error 'cannot initialize schemelayer.

  What could be the problem?

  Hello

  The error "can not initialize the SchemeLayer" usually when you're not

  connected with the domain administrator account.

  This error happens when the account does not have priv on the system.

  Kind regards

  ~ JG

  Note the useful messages

• ACS health: internal server error

  Hi all

  We have improved our ACS server to 5.8.0.32.4 in the morning. After that when I tried to check the health of the ACS in follow-up and I get the error message internal from the report server. All services are running on the primary and secondary server.

  Any help would be appreciated.

  Thank you.

  Hey Pratik,

  We have above mentioned error, after installation of the patch or upgrade and immediately accessing the dashboard page. But it will not happen systematically.

  Could you please check if we have problem with all the particular admins or admin?

  If we see the question with all admins, then restart the only management and check once more.

  Thank you

  Catherine

• ACS is indicating "no space left on device error".

  Hello

  We have acs 5.5.0.46.7, it's show error in cli

  Cisco acs cannot make directory ' / var/run/screen/S-adminms ': no space is available on the device

  Any idea?

  Concerning

  Looks like you are hit:

  CSCuq36829    ACS 5.5 - / var fill up to 100%, causing instability on GBA

  The workaround is necessary because it requires installation of root fix (for access to the operating system) and apply the fix it.

  You can paste the output of ' disks to see the '?

  -Jousset

• Error of org.xml ACS 5.3 Exception when executing reports

  Hello

  5.3 GBA running on a device of 1121

  When you run a report's RADIUS authentication, accounting, etc. is all report, I get the error attached image (org.xml.sax.SAXParseException...). I have not yet found a solution. I'm running another ACS 5.2 device that does not have this error

  If the upgrade to a newer version will solve this problem, the license (5.3) will suffice.

  Any help is appreciated

  Kind regards

  MOE Shea

  Hello Mo,

  I have this error either a browser problem, I recommend you watch the ACS 5.3 release notes and confirm if you are currently using a supported browser:

  http://www.Cisco.com/c/en/us/TD/docs/net_mgmt/cisco_secure_access_contro...

  A restart of services can take care of it as well in case you are using a supported browser.

  Note: Please mark as answer as appropriate

• Cisco ACS SE "set ip" error: could not set up new NETWORK card configuration.

  Hello

  I get the error "error: could not set up new NETWORK card configuration." When I try to set the IP ACS SE.

  When I called into the device image and tried to do an initial installation, the IP to not hold after the restart and went back to the default value.

  I went by NetPro and apparently it is a common problem. One person it is solved re-imaging unit, but who has not worked for me.

  Someone there with a solid solution? I use NIC 1 FYI.

  EDD.

  Ed,

  Please make sure that if ACS is associated with active before setting Ethernet connection

  or change the IP address of your ACS system engineer.

  http://www.Cisco.com/en/us/docs/net_mgmt/cisco_secure_access_control_server_for_solution_engine/4.0/installation/guide/appliance/admap.html#wp1109621

  Kind regards

  ~ JG

• Internal error of ACS

  I'm aving 4.2 ACS for synchronization with the PDC running windows 2008, I see the error below in AUTH CS logs when a user attempts to authenticate via the external database in Windows:

  AUTH CS newspapers: AUTH 05/24/2010 11:08:19 2100 49316 0 x 2 external DB [NTAuthenDLL.dll]: Windows authentication FAILED (error 6 L)

  Any suggestions

  Thank you

  Hello

  Win2008 is supported from ACS ver 4.2 patch 4 onwards, so you need to upgrade your ACS to 4.2(latest patch).
  
  ACS 4.2.0.124 cumulative patch for windows can be downloaded from this link,
  http://www.cisco.com/cgi-bin/tablebuild.pl/acs-win-3des
  Also ACS is currently not supported on Win2008 R2 (ACS running on win2008 R2)
  So make sure you are running acs 4.2.0 with latest patch or 4.2.1.
  Regards,
  
  ~JG
  Do rate helpful posts

• ACS 5.1 13030 GANYMEDE + authentication error Question

  Hi all

  I am trying to set up a new server GANYMEDE + and am trying to update all configurations of our network to point to the new server devices.  Everything is fine looking up now, but on the ACS monitoring tool, two of our switches are constantly spamming '13030 request authentication GANYMEDE + lack a username' error.  The network admin group have no problem is authenticating with these two switches and they confirm that it is not trying to connect.  Does anyone know if ACS monitor will show any sauce to the IP addresses of these applications?

  If you click on the detail in your authentication error message, you should be able to find the 'Remote-address' field, which should tell you the remote IP address.

  If you haven't seen an IP in the address 'remote' field, you may need to check the console port / switch to see if something is connected to, what could cause the problem.

• ACS 4.2 - internal error

  Since yesterday, the newspaper has no authentication is showing Internal Error when people attempt to authenticate by using their AD credentials.  Until a few weeks ago, the ACS (windows 2003 SP2) server has been configured with two controllers/Server DNS - one was Win2003 and the other was Win2008.

  The controller Win2003 was demoted and replaced by a controller 2008-R2-, but this internal error problem appeared only yesterday.

  If I restart the ACS - normal authentication server using AD recover during a short period of time - but then the problem reappears.

  Any ideas?

  Hello

  The following link describes the migration of ACS 4.2 to 5.2 ACS.

  http://www.Cisco.com/en/us/docs/net_mgmt/cisco_secure_access_control_system/5.2/user/guide/migrate.html

  I hope this helps.

  P.S.: Please mark this thread as answered if you feel that your query is resolved. Note the useful messages.

• EAP - TLS in ACS 5.2 error

  Hello

  I have configured the RADIUS to dot1x a 5.2 ACS. When I tried to connect a user to an active switch of dot1x port, I get the following error in the RADIUS.

  Description Result of the identity strategy is set for password based authentication methods but received certificate authentication request

  Troubleshooting steps Check the appropriate service in the Access Service and its identity source in Access Services > Sysaccess > identity >. This error occurs when the identity source is configured for password based authentication received a certificate of authentication based request.

  The switchport configuration is:

  switchport access vlan 810

  switchport mode access

  authentication event failure action allow vlan 132

  no response from the authentication event action allow vlan 810

  Auto control of the port of authentication

  dot1x EAP authenticator

  dot1x max - req 3

  Check IP source port-security

  end

  Please help correct this GBA 5.2

  Kind regards

  Abhishek

  Ok

  have you checked the attribute you want to ACS to check in the package from the client comes.

  More importantly, select the certificate profile as store of identity under the identity of policy - name of the service of access - Access - select.

  BR,

  Tushar Gaba.

• Cisco ACS 4.2 internal error

  Good evening. I have problem with ACS 4.2 and AD, autification on PC I have an internal error. In RDS.log, I have this line:

  Error authentication UDB_NT_UNKNOWN_ERR (DOMAIN)------(USERNAME) - no response sent to the NAS

  I already checked coat of physhic problems, dot1x switch configured, agent remote ciscosecure installed.

  Hello

  Is the file also considered Auth.log "Windows authentication FAILED (error 6L)" for the same RDS timestamps and failures?

  Also, what version of ACS (include the Patch) are you using? You log on Windows Server 2003 or 2008 or 2008 R2 AD?

  NOTE: Remember that 2008 R2 AD is not supported by any 4.x version of ACS.

  Also, make sure that you have complied with the following requirements:

  http://www.Cisco.com/en/us/partner/docs/net_mgmt/cisco_secure_access_control_server_for_solution_engine/4.2/installation/guide/remote_agent/Rawi.html#wp311476

  Check that apply to you as there are has two options: Member Server Windows or a Windows domain controller.

  Kind regards.

• ACS 5.3 - change device group or location error

  I am trying to move a device from the default location to a subgroup and get the following message when I try (be it with IE or Firefox)

  This failure has occurred: Index: 0, size: 0. your changes have not been saved. Click OK to return to the list page.

  It also gives me the same error if I try to change the default device for a subgroup. I don't know that I could do before. The construction of the ACS is (installing VMWARE):

  Deploying applications engine Cisco OS version: 1.2
  ADE-OS Build Version: 1.2.0.228
  ADE-OS System Architecture: i386

  Copyright (c) 2005-2009 by Cisco Systems, Inc.
  All rights reserved.
  HostName: ACS1

  Version information for the installed applications
  ---------------------------------------------

  Cisco ACS VERSION INFORMATION
  -----------------------------
  Version: 5.3.0.40
  The identifier for the internal version: B.839

  I'm he suspect a problem reading/writing with the database or a corruption of the database. Can someone enlighten me on how to fix it please?

  I stopped and started the acs application via the console application status and see the acs has this to say about himself.

  ACS1 / admin # display the status of the acs application

  Role of the ACS: PRIMARY

  Process of database ' ' running
  'Management' running process
  'Runtime' running process
  "View-database" running process
  "View-jobmanager' running process
  "View-alertmanager' running process
  "Notice-collector' running process
  "View-logprocessor' running process

  Mel

  Does this happen to small number of network devices or the entire

  If the former, then I found the following CDETS

  CSCtw59271    Corruption of device random network after upgrade of ACS 5.2 to 5.3

  Which includes the following workaround solution

  Symptom 1: Remove and re-add the AAA client

  Symptom 2: changing the secret shared GANYMEDE + of the network device, enter the same key again and save the network device.

  > Use when GANYMEDE + has been used

  There are a few important fixes related to the upgrade of issues in patch 5 and later versions for ACS 5.3. While they didn't wear on NDs, I recommend not to install this patch