Guest

Preview Tool

Cisco Bug: CSCuo10336 - ADI hung on LDAP call, resulting in failed authentications

Last Modified

Jul 11, 2014

Products (1)

  • Cisco ASA Next-Generation Firewall Services

Known Affected Releases

100.3(0) 100.4(0) 9.2(1)

Description (partial)

Symptom:
Active authentications against LDAP realms stop working. Users enter credentials and are never passed to the original URL
ADI process (vdi) is at 100% CPU
While tailing the ADI log (adi.log), additional active authentication requests do not appear. Every time such a request occurs, the log "2014-04-03 16:35:46,320 INFO  vdi.daemon           - auth: using username: '<username>" should appear.

Conditions:
LDAP server went down for a long period of time. Within that period of time, multiple (>10) active authentication requests are made.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.