ra VPN to ASA 5510 just stopped working

[nhidalgo]

Yesterday we had an internal DNS issue and i believe it broke my RA vpn session that use Active directory for AAA authentication.

Is there command to clear the name and arp cache's on the ASA like the windows ipconfig/flushdns. I believe this is the problem, but cannot reset the device as there are 55 L2l connections running through it.

Thanks
Nick

 

[unclerico]

clear ip arp

I hate all Uppercase... I don't want my groups to seem angry at me all the time! =)
- ColdFlame (vbscript forum)

 

[nhidalgo]

thanks for the response, but it still will not work.

I am in the AAA server defintions and try a test and it just says the authentication times out.(for nt domain)

Also tried setting up a radius server on my domain controller and set everything up and i get error: Authntication Rejected: invalid password.

I have reset the password a few times and also changed the shared secret, but have the same result.

Is there a way to flush out the AAA process. I am either going to call cisco or reset this asa some time tonight.

Thanks

 

[unclerico]

I'm assuming that you're using IAS?? What do the logs on the server say??

I hate all Uppercase... I don't want my groups to seem angry at me all the time! =)
- ColdFlame (vbscript forum)

 

[nhidalgo]

Wasn't using IAS before, was straight NT authentication via AAA. Setup IAS and after testing and doing a few web searches it turns out PAP authentication needs to be turned on. Everything is working now. THanks for the quick responses.

Nick

 

[unclerico]

No problem. Glad to help

I hate all Uppercase... I don't want my groups to seem angry at me all the time! =)
- ColdFlame (vbscript forum)