ACS 4.2 to 4.2.1 Upgrade Questions

Similar Messages

• Security upgrade question - Getting 6.1.6 downloaded to iphone.

  Security upgrade question - I have a 4S phone v6.01 with an upgrade to IOS 7.04 already downloaded and ready for install.  I would like to install the 6.1.6 security upgrade instead. How do I delete the ios7 in the queue or have the 6.1.1 pushed as an option to the phone?

  You can't install iOS 6.1.6 on that device and must update it to 7.0.6.
  (101120)

• I have an upgrade question. I received a notification when I connected my computer to the internet that Lightroom 5.7.1 was available

  I have an upgrade question. I received a notification when I connected my computer to the internet that Lightroom 5.7.1 was available it included HDR & Panoramic photo merge. I cant find these. Where do I find them.

  well that was a big waste of my time & data allowance then ...
  I live in a flaky slow internet area & I keep my photo edit machine off the internet unless & want to update something. CC is no use to me & that useless update just used up a 12th of my allowance for the year ...

• Another RAM upgrade question

  Hi everyone,
  I know there seems to be lots of RAM upgrade questions here but hey thats what forums are for.
  I'm looking to upgrade my macbook's RAM it's currently got 2GB (2x1GB)
  Is it possible to purchase 1x4GB and put that with one of my current 1GB sticks to create a total of 5GB?
  I would be interested to know if this is possible or if anyone has tried it.
  Thanks in advance
  Scott

  This will work if your MacBook is late '07 or newer.

• ACS loses connection with AD occasionally after upgrade from 5.2 to 5.3.0.40

  ACS had been integrated with Active Directory before ACS upgrade to 5.3. After the ACS 5.3 upgrade users aren’t able to login to AAA devices occasionally. Error message is:
  {AuthenticationResult=Error; Type=Authentication; Authen-Reply-Status=Error; }
  24429 Could not establish connection with Active Directory
  At the same time, when this issue occurs, ACS connection to AD works fine (checked with Users and Identity Stores> External Identity Stores > Active Directory “Test Connection”)

  I had the same problem, I opened a Cisco TAC case and my issue was resolved.
  Sent: Tuesday, 14 August 2012 9:58 AM
  Subject: RE: 622739355 HelpDesk#SVR328332-2 : Troubleshoot Cisco ACS 1121 v5.3 With Windows Active Directory
  Hi Ramraj,
  Thanks for the link to the article, but from what I’ve seen in the logs I’m not sure that we’ve got the same root cause to the issue.
  From the ACSADAgent.log files I can see log messages like:
  Aug 11 11:10:56 CSSC-TPM-DC-ACS-1 adclient[5524]: DEBUG network.state NST: SniffList: postfailsort=mykulad11p.cssc.dksh.net
  Aug 11 11:10:56 CSSC-TPM-DC-ACS-1 adclient[5524]: DEBUG base.kerberos.adhelpers Encryption (id 1) is not supported by KDC. Try next in the list
  Aug 11 11:10:56 CSSC-TPM-DC-ACS-1 adclient[5524]: DEBUG base.osutil Module=Kerberos : KDC refused skey: KDC has no support for encryption type (reference base/adhelpers.cpp:216 rc: -1765328370)
  Aug 11 11:10:56 CSSC-TPM-DC-ACS-1 adclient[5524]: DEBUG base.adagent Unable to refresh computer credentials: KDC refused skey: KDC has no support for encryption type
  This lines up with the error message that we see in the TACACS+ Authentication logs:
  24493 ACS has problems communicating with Active Directory using its machine credentials.
  I have come across a NETBIOS limitation (it’s not an ACS bug, but a bug has been filed for tracking and documentation purposes) that prevents two ACSs from being connected to Active Directory at the same time if the first 15 characters of their hostnames are the same. The bug ID is CSCtj62342 and its externally visible details are available here: http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCtj62342
  The hostname of the primary ACS is : MYMY-TPM-DC-ACS-1
  The hostname of the secondary ACS is: MYMY-TPM-DC-ACS-2
  From the hostnames, we can see that the first 16 characters of the hostnames are the same. What this means is that once the primary is connected to AD, after some time passes (this will depend on when the secondary goes an talks to AD) the secondary will lose its connection to AD and any authentications hitting the secondary will fail with the same error: 24493 ACS has problems communicating with Active Directory using its machine credentials.
  To resolve this issue, the hostnames of the ACSs will need to be changed so that the first 15 characters of their respective hostnames are not the same. Please keep in mind that this is a NETBIOS limitation and not a software bug.

• Cisco Secure ACS 3.3(1) - 4.0(1) upgrade problems

  Hi all!
  I'm having problems upgrading my primary ACS from version 3.3 -> 4.0
  I always get the following error message while it's doing the upgrade:
  "The CiscoSecure ACS folder appears to be locked by another application: C:\Program Files\CiscoSecure ACS v3.3
  Please close any applications...blabla.."
  The thing is, I upgraded my backup ACS first and that upgrade worked like a charm.
  In both cases, both for the primary and backup I do a remote takeover with Dameware, copied the ACS 4 folder to the hard drive of the server and do the upgrade from that folder.
  As I said, the backup server upgrade worked without a hitch.
  This is what I've tried:
  1. I've verified that NO application is using the ACS 3.3 folder and no explorer window is open on that folder or subfolders.
  I verified this by using a small program called Filemon.exe from Sysinternals. According to that program nothing was accessing said folder.
  I also verified it again by actually renaming the ACS 3.3 folder after I shut down all the ACS services. I could not rename the folder if the services were started.
  2. I've tried to stop the ACS services first and then do the setup, got the same error.
  3. I disabled the antivirus software, got the same error.
  I'm basically at my wits end now...
  I have two options though:
  1. Un-install ACS 3.3, do a clean install of ACS 4.0 and import the all data from the backup ACS.
  Wouldn't that bring up the primary ACS with the backup ACS config? So I'm guessing I would need to go over it afterwards and do changes where appropriate ?
  2. Do a backup of the ACS 3.3 with csutil -b
  Uninstall ACS 3.3, do a clean install of ACS 4.0 and import all the data with csutil -r
  Would that work? I've seen conflicting information here in this forum, some say it works, other say it doesn't.
  I'm pretty much confused why this worked so well on the backup ACS but fails on the primary ACS.
  Any help would be greatly appreciated!
  Thanks!
  Ivar Thorolfsson

  Hi,
  The folder lock message is often seen if the logs in the ACS directory are too big.
  Move the Logs from the following Directories :-
  CSAdmin\Logs
  CSAuth\Logs
  CSDBSync\Logs
  CSLog\Logs
  CSMon\Logs
  CSRadius\Logs
  CSTacacs\Logs
  Logs
  Then try to upgrade.
  Regards,
  Vivek

• ACS 3.3 to 3.3.11 upgrade

  when i try to upgrade my ACS 3.3 to 3.3.11 it says folder ACS in prog files is locked...
  any idea?

  Wasim,
  The error that we are getting is generally due to huge accumulation of logs in ACS
  installation folder :
  Please remove or relocate all the logs file from following location and then try to upgrade, :
  \CSAuth\Logs
  \CSRadius\Logs
  \CSTacacs\Logs
  \CSLog\Logs
  \CSMon\Logs
  \CSAdmin\Logs
  \CSDbsync\Logs
  Regards,
  ~JG

• ACS SE upgrade questions

  We currently have an ACS SE 1112 version 3.3.4.12. Windows Active Directory is being used to authenticate users.
  We have a new ACS (1113 running 4.1.1.23.5) that will be replacing this one.
  Regarding the new install, do I need to install a new remote agent to use with Active Directory? Also, can I use the same IP address for the new ACS SE that is being used for the one that will be replaced? We didn't want to change our switch and router configs if it isn't necessary. If it's possible just to set up everything on the new ACS SE and then unplug the old one and plug in the new one.
  I am new to ACS and was not around when it was originally set up so sorry if these are dumb questions!
  Please advise. Thanks so much.

  It should work as long as you don't miss anything, and yes you are supposed to install an agent that matches the version you are running. You might want to go ahead and put the latest updates on the ACS before you put it into operation. The process is kind of different than other updates. You might want to read my other ACS posts. I recently killed one of my ACS boxes because I did not install the CSUPdate cumulative patch before installing the lastest patch of the same rev level. (i.e. read directions carefully). Make sure you do an FTP backup before updating the software. If anything goes wrong you could have to reimage the box. There were lots of bug fixes in the updates since 4.1.1.
  Randy

• Using a Family Members Upgrade, Question on the Process

  I plan to pre-order the phone on my brother's line since he is eligible, he's away at college though. When I swap the ESN's or whatever, will I need any info from him or need him to get involved at all? Or can I just do it all myself?
  Also, my brother doesn't have a data plan..so how will that work?

  When you are on my verizon click transfer upgrade on your brothers line to yours...you have to have account acess though.  Do you have a data plan?  iAll that matters.  If not just purchase it on check out.  They will ask.

• Windows 2003 SP2 upgrade question in regards to OSS 30478

  We are currently running our production system on a windows 2003 sp1 two-node cluster with SQL 2005.
  I would like to get it upgraded to SP2, but I have a question on OSS note 30478.
  There is a sentence in there stating:
  -Special features with Service Packs for Windows Server 2003 in the cluster:
  Service Pack 2: Before you import Support Package on platform x86_64, you must replace SAP resource DLL on both cluster nodes with the most current version.
  Can someone elaborate on "replace SAP resources DLL on both cluster nodes"?
  Does that just mean I need to upgrade the Kernel to the latest version?
  It seems to be a fairly bold statement with very vague instructions.  Anyways any guidance would be appreciated.

  for more details see note <a href="http://service.sap.com/sap/support/notes/1043592">1043592</a>
  peter

• Satellite L50-A-19N HDD upgrade question

  Hi,
  I would like to upgrade the standard HGST HDD to a faster Seagate SSHD, and the problem is that in this model L50-A-19N there is no HDD cover, the whole laptop bottom must be removed like in this Link: [Video|http://www.youtube.com/watch?v=IG0lW7t92bI]
  My question is can I upgrade the Disk by Myself and if not what can I do to replace the Disk not losing the warranty. I read the manual for this model and there is nothing about HDD upgrades there.
  Regards.

  Usually on most notebook models HDD is placed at the bottom and access to it is not complicated. As you can see on your notebook model it is not so easy and HDD exchange is not supported. With other words it should not be done by notebook owner.
  Valid warranty is very important so please don't do anything on your own. HDD exchange in your case can be done by authorized service provider. If they do this warranty will not be cancelled.
  Contact nearest Toshiba service provider and ask for help. Addresses and phone numbers you can find on http://www.toshiba.eu/innovation/generic/ASP_SUPPORT/
  Good luck

• Mid 2009 MacBook Pro 13 Hard Drive Upgrade Questions

  I bought an upgraded hard drive for my mid-2009 MBP 13. I've done some reading and it appears that my model of MBP shouldn't have drive issues, but I still have a few questions that I'm hoping someone will answer. Perhaps this will all boil down to a little knowledge is a dangerous thing. That is, I may be worried without good reason. If so, I apologize ahead of time.
  MacBook Pro 5,5
  2.26 GHz
  4GB RAM
  10.6.3
  Firmware version is: EFI64
  The stock drive is a TOSHIBA MK1655GSXF (160 GB):
  The new hard drive is the Western Digital Scorpio Blue 500 GB 5400 RPM drive.
  I noticed that the temperature seemed to spike after installing the new drive. I didn't get the temperature of the hard drive before I took it out, but the CPU was consistently around 170 degrees Fahrenheit and the fan was in the 2,800-2,900 RPM range.
  After putting the stock drive back in the MBP, the temps are consistently 142-145 degrees F for the CPU and 95-97 degrees F for the hard drive. The fan is right around 2,000 RPM.
  I've read a bit about outrageous load cycles and just wanted to check the numbers.
  The WD Scorpio Blue around 4,055 after 27 power on hours.
  The stock drive was at last count, at 206701 after 2215 power on hours.
  The machine is doing comparable things, downloading podcasts, Time Machine backups, browsing, etc.
  The general questions, I have are:
  Is the temperature supposed to spike like that when handling a larger drive?
  If so, what is a reasonable range? I know I don't have the temperature of the new drive, but if I knew what to expect, I guess I would be more confident putting the new drive back in and not returning it.
  What's a normal/healthy/reasonable (don't really know the term I'm grasping for) load cycle to see? I divided the load cycles by the number of power on hours and get around 150 for the WD and 93 for the Toshiba. Are either of those outrageously good or bad? I haven't been able to tell in my reading.
  The bottom-line questions are:
  Am I just overreacting based on what I've read? Or, is something not kosher and should I return the new drive and get something else? Should I try hdapm or something? If I should return the drive, any recommendations?
  I've talked your collective ear off, I'm sure.
  Thank you in advance for your responses.
  Cheers,
  Rob

  For what it's worth I've put aftermarket 7200 rpm hard drives in 2006 and 2008 15" MBP's and also a WD Scorpio Black 320GB in a 2009 13" MBP 2.53GHz and have had no changes in cpu temp or fan speed. Your fan speeds and cpu temp with the new drive sound too high. Something else is going on here. The temp is not supposed to spike when handling a larger drive. Maybe it's something like
  Spotlight indexing the new drive? Have a look at your Activity Monitor for an active process drawing resources with the new drive.

• Visual Studio 2005/2008 and Crystal Reports versions/upgrade questions.

  I've tried posting this question on the MSDN forums and gotten no response. 
  I've downloaded and installed VS 2008 Beta 2.   The versions on the Crystal Reports files included are 10.5.0.1806  
  I'm currently using VS 2005, with the included Crystal Reports.  The versions on those files are 10.2.0.xxxx.  I've created an desktop app (in VB) which stores it's data in a database and uses the CR 10 runtime merge modules to generate a report.
  I was considering upgrading the Crystal Reports version to XI.  I would like to allow customers to modify my delivered report with their own licensed copy of CR XI.  I am not providing any functionality within my app to create or modify the delivered .rpt or use it outside my application.
  Questions:
  Do I need to update the runtime files to CR XI to support rpt files modified with CR XI?  Current runtime files are being delivered with the CR 10 merge module.
  I see a Crystal Reports for Visual Studio upgrade to CR XI. 
  Can I update the merge modules to CR XI and still use the CR for VS2005 for development?
  Does it make any sense to update CR for VS 2005?  Or to get the full CR XI Developer edition?  My usage of CR functionality is very limited.
  Would there be any benefit to waiting for the release of VS 2008?   How does that change the scenario?
  How does Crystal Reports for Visual Studio fit in with the Crystal Reports Lifecycle?  It's not mentioned on Business Objects End of Life Dates page . Crystal 10 has a Patch EOL of 31-Dec-07.   Does this apply to CR for VS 2005?  Where does 10.5 fit in?
  My main concern is allowing customers with CR XI to change the format of my delivered .rpt to run with my app.  Adding their company name, logo, etc.   My testing show a CR XI report still works with my current app.  But, going forward, what should I deliver and what do I need to use to continue development?

  To use Reports designed in XI, you need to use XI or higher runtime, running them in older versions may work, but you may encounter unforeseen issues doing so.
  If you are to use VS2005 for development you need to use XI Release 2 (11.5) runtime.
  If you are going to use VS2008 for development you need to use Crystal Reports 2008 with Service Pack 0.
  The support end of life for versions of Crystal Reports bundled with Visual Studio are linked to what Microsoft's lifecycle for the product is.  Generally if there is a workaround for the issue that is simple enough, there will not be a patch created.
  The changes you are expecting the customer to do can be accomplished with our RAS SDK which is available without using enterprise starting with Crystal Reports XIR2 SP2.

• Memory upgrade question

  Hey all -
  I'd like to increase the memory in my 400 mhz G4 Yikes (PCI). Right now I have one 128MB and 2 256MB cards, both 100.
  I've always been led to believe that the max I can install is 4 256MB cards. But I was just reading that I can in fact install up to 4 512MB cards using OSX (I run 10.3.9). Which is true? Is the 1 GB limit based on OS9?
  Also, can I install 133 memory? Is that faster than 100? Can I mix 133 and 100?
  Can any 133 SDRAM 168 pin work in the MAC, like modules that might also fit in a PC?
  I'd like to install at least 1GB to coincide with a software upgrade to Adobe CS2. If I can put more then 1GB that would be great, and the fastest possible.
  Thanks in advance.

  The following is from the RamJet memory website:
  "The original PCI Yikes version was discontinued in the fall of 1999, and all subsequent models can use the AGP version memory. These later AGP models include the G4 Cube, the G4 Sawtooth, and the G4 Dual Processor.
  Maximum RAM: Although it is physically possible to install four 512mb DIMMs, this machine will only recognize a maximum of 1.5G under OS9. OX10.0 and later are able to recognize a full 2Gig."
  http://www.ramjet.com/g4c.asp
  This is confusing - I guess they are referring to subsequent models when talking about the 2GB max and not the PCI.

• K330 Video card upgrade question.

  New to forum and was just about to pull the trigger on a new K330-77471CU (from BB). However, I read a customers comment saying that this unit only had an AGP port, no PCI express slots for upgrading the video card, can this be true??? Does'nt seem possible today.  The desktop overall will fit my needs, but I want to make sure that if I elected to upgrade the video card someday, I could with the latest generation cards. 

  thanks for the reply Duck3. The above desktop is a new release for BB stores and features i3-2100 / 8mgs memory / 1 T HD. Not a high end unit by any means but one that you would think would allow the user to upgrade the integrated vid. card to a dedicated ........ hmmmm , I'm hoping perhaps a rep from Lenovo will jump in and clear this up so I can make a decision on this particular desktop.  I highly doubt our local BB sales rep is going to know the answer to this. These things just hit the shelves here. And yes, the customer was giving his review of the above mentioned model he just purchased.