We're having problems authenticating users to wireless and VPN with a Domain Controller that runs Cisco ACS. We're using Radius for authentication on the ACS server. The server is 2003 SP2.
When users try to login, the logs on the Cisco interface display "External Database account restriction". I'm troubleshooting on the Windows side, and I have a feeling we have a certificate problem. The problem didn't come up until we rebooted.
Does Radius on ACS use the Domain Controller certificate to authenticate users? Any suggestions on how to fix this?