[RADIATOR] davispolk.com: cannot login

Qiu, Dennis dennis.qiu at davispolk.com
Wed Aug 19 11:45:07 CDT 2015 

Heikki,

We recently installed Windows updates on our domain controllers. Can you let me know what protocol Tacacs in radiator uses?

I see it uses RPC calls to domain controllers. 

Thank you

Dennis Qiu
Information Systems
Davis Polk & Wardwell LLP
450 Lexington Avenue
New York, NY 10017
212 450 5651   tel
dennis.qiu at davispolk.com


________________________________________________________________________________
Confidentiality Note: This email is intended only for the person or entity to which it is addressed and may contain information that is privileged, confidential or otherwise protected from disclosure. Unauthorized use, dissemination, distribution or copying of this email or the information herein or taking any action in reliance on the contents of this email or the information herein, by anyone other than the intended recipient, or an employee or agent responsible for delivering the message to the intended recipient, is strictly prohibited. If you have received this email in error, please notify the sender immediately and destroy the original message, any attachments thereto and all copies. Please refer to the firm's privacy policy located at www.davispolk.com for important information on this policy.


-----Original Message-----
From: Heikki Vatiainen [mailto:hvn at open.com.au] 
Sent: Tuesday, August 18, 2015 3:37 PM
To: Qiu, Dennis
Cc: radiator at open.com.au
Subject: Re: davispolk.com: cannot login

On 08/18/2015 10:16 PM, Qiu, Dennis wrote:

> Tue Aug 18 12:08:26 2015: DEBUG: New TacacsplusConnection created for
> 172.20.165.194:14854

> We see more than thousands of those lines in log.  No one can login 
> network device.

> After I restart Radius service, then it works again.

Hello Dennis,

I have not heard about this sort of behaviour from the other TACACS+ users, so I'd like to ask you to see if there is any useful debug information available from the Cisco client side.

Also, if I provide you with ServerTACACSPLUS.pm that has additional debugging that tells if there is anything received over the new connection, can you try it to gather some additional logs?

I can get back to you with the enhanced logging tomorrow.

Thanks,
Heikki

--
Heikki Vatiainen <hvn at open.com.au>

Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP, DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS, NetWare etc.

More information about the radiator mailing list