<div>
<div class="content wysiwyg-content">
We're having problems authenticating users to wireless and VPN with a Domain Controller that runs Cisco ACS. We're using Radius for authentication on the ACS server. The server is 2003 SP2.<br />
<br />
When users try to login, the logs on the Cisco interface display &quot;External Database account restriction&quot;. I'm troubleshooting on the Windows side, and I have a feeling we have a certificate problem. The problem didn't come up until we rebooted.<br />
<br />
Does Radius on ACS use the Domain Controller certificate to authenticate users? Any suggestions on how to fix this?
</div>
</div>


We're having problems authenticating users to wireless and VPN with a Domain Controller that runs Cisco ACS. We're using Radius for authentication on the ACS server. The server is 2003 SP2.

When users try to login, the logs on the Cisco interface display "External Database account restriction". I'm troubleshooting on the Windows side, and I have a feeling we have a certificate problem. The problem didn't come up until we rebooted.

Does Radius on ACS use the Domain Controller certificate to authenticate users? Any suggestions on how to fix this?

Cisco Secure ACS, having problems authenticating users

Network Operations includes asset management, help-desk supervision, security and user policies, infrastructure administration and anything else that affects the operation of your network. Discussions will include those of best practices in platforms, configurations, performance, security and accounting.