Guest

Preview Tool

Cisco Bug: CSCvt37708 - ASDM aaa server test says authentication successful if a response is not received from RADIUS server

Last Modified

Jun 09, 2020

Products (1)

  • Cisco Adaptive Security Device Manager

Known Affected Releases

7.12(2.153)

Description (partial)

Symptom:
- When trying to simulate test aaa command from ASDM we see authentication to host is successful and one more ASDM message where it says host is not responding.

Conditions:
- Configure any random RADIUS server on ASA  and try to test aaa from ASDM, the issue will be reproduced. For example the config on my ASA is as follows:
 
                aaa-server Duo protocol radius
                reactivation-mode timed
                max-failed-attempts 1
                aaa-server Duo (outside) host 10.106.40.2
                timeout 70
                key *****
 
                From CLI I get the following error:
                rahbhosa-asav# test aaa authentication Duo host 10.106.40.2
                Username: cisco
                Password: *****
                INFO: Attempting Authentication test to IP address (10.106.40.2) (timeout: 72 seconds)
                ERROR: Authentication Server not responding: No response from server

- Whereas on ASDM we see 2 messages:
a. Authentication test to host is successful
b. ASDM did not get a response from the ASA in last 60 seconds. Please check to see that the network connections are still up and try to reconnect by refreshing ASDm.

- Using ASDM 7.12
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.