Guest

Preview Tool

Cisco Bug: CSCun99155 - DOC: Machine authentication fails with UPN as subject name in cert

Last Modified

Feb 15, 2018

Products (1)

  • Cisco Secure Access Control Server Solution Engine

Known Affected Releases

5.5(0.33)

Description (partial)

Symptom:
1)Machine authentication fails for Windows machine with the following error : "RADIUS Request dropped:24492 Machine authentication against Active Directory has failed".

2) Authentications fails for the usernames coming in with a host/ but which are not coming in with a host/ are successful

Conditions:
1) The machine authentication request is coming in with a host/ on the ACS

2) "UPN" is the subject name identifier in the certificate issued to the client machine i.e. UPN is selected in the certificate template

3) SAN is being used in the certificate authentication profile and AD is being used as the identity source

4) Certificate based authentication is taking place
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.