Preview Tool

Cisco Bug: CSCur93568 - ACS - new configuration of RSA authentication would not take effect

Last Modified

Feb 21, 2018

Products (1)

  • Cisco Secure Access Control Server Solution Engine

Known Affected Releases


Description (partial)

ACS cannot apply configuration that contain node secret from RSA server:

Users and Identity Stores > External Identity Stores > RSA SecureID Toek Servers > Edit "RSA-SecureID-Token-Server" at tab "ACS Instance Settings" the Node Secret Status will display: "-not created-"

On the RSA server
-in the monitor window the authentication will fail with message "pre-shared-secret mismatch"
-at the very first try to sync up the ACS with RSA the authentication might show as successfull on RSA appliance.

-new setup
-ACS version 5.5 and 5.6
-when ACS is configured to perform an addition authentication against an RSA server

Related Community Discussions

benefits of Cisco ACS 5.7
Hi Everyone, I am currently using Cisco ACS 5.4 with patch 7  only to manage users logging into network devices (i.e. TACACS+ and radius).  Cisco just releases 5.7 on May 12th.  Any benefits to upgrade from 5.4 patch 7 to ACS 5.7? on the release notes, I see this on 5.7:  Maximum Failed Attempts Count Policy  New Sub-Attributes for Service Type RADIUS IETF Attribute  Supporting SNMP Traps for Monitoring Disk Utilization  Log Message for CLI Administrator Account Locked Out  Establishing New Connection ...
Latest activity: May 20, 2015
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.