Manualshelf

Installation guide

ManualsBrandsCabletron Systems ManualsComputer equipmentAccess Server 316
919293949596979899100
User Authentication Configuration Problems
8-2
This chapter discusses troubleshooting procedures for problems using the Kerberos,
RADIUS and SecurID security user authentication systems. For information about the
Local User Accounts security system, see the Network Access Software Management
Guide.
Authentication problems fall into one of the following categories:
Configuration or administration of security information
Unavailability of the security server
Network connectivity problems
Configuration of the network access server
A user may unexpectedly be denied access with an "invalid login" message for one of the
following reasons:
The user incorrectly entered the username or password.
An incorrect (default) realm is being used.
The access server is not registered with the required security server.
The access server does not share the correct secret with the required security server.
The user's registration has expired.
The users authorization information is incomplete.
The users authorization information is incompatible with the network access servers
port configuration.
The security server has silently discarded the authentication request because it was
inconsistent or illegally formatted.
A "timed out", "socket error", or "protocol error" message can indicate one of the
following network configuration problems:
The security servers are incorrectly entered into the access server's database.
The security servers are not responding because they are either down or unreachable.
The Internet parameters on the access server are not configured properly.
Some other unexpected event has occurred. Refer to protocol error codes in Message
467.