Secure VPN Connection terminated locally by client. Reason 413: User authtication failed.

Question Info

Experts Exchange Solution brought to you by Your issues matter to us. In most cases, this issue is related to simultaneous login under group policy. Covered by US Patent. Reason - Hi I need some help regarding cisco vpn client authentication. There is also a solution to that: Experts Exchange Solution brought to you by Your issues matter to us.

Cisco VPN Authention : Reason - 413

User Authentication failed error message. In most cases, this issue is related to simultaneous login under group policy. If the Inherit check box is not selected on ASDM, this parameter specifies the maximum number of simultaneous logins allowed for this user. The default value is 3. The minimum value is 0, which disables login and prevents user access.

In order to resolve this issue, increase the value for simultaneous logins. Choose the appropriate value. If you try more than three client connections again, it should work now..

In my case, I had two users that got this error. They are getting the following errror. Nothing has changed as far as I know. It has been working for years without any problems. Her is my client connection log. Windows, WinNT Running on: Solutions Learn More Through Courses. Experts Exchange Solution brought to you by Enjoy your complimentary solution view. Get every solution instantly with Premium. Start your 7-day free trial. I wear a lot of hats It may be as simple as power cycling the firewall I'd export your configuration to a file prior to rebooting.

If that doesn't do it, it can't hurt to reset or reenter the password in the terminal. The usernames and local to the ACS box. But i dont know if I have configured the group properly. And besides, since I am connecting it with a vpn comcentrator, i dont know if the settings on the vpn concentrator and the acs needs to be the same. It does explain the concepts and basics to get things going. Experts Exchange Solution brought to you by Your issues matter to us.

Thankyou Koudry Ill look at these documents and get back to you. And i have one more issue. I triedto upgrade the acs box from 4. Is there any work around for this?? Do you mean that the new software release 4.

If that is the case, it is likely that you have a corrupted software. This happens sometimes when you are trafferring from one storage to the other, especially from your windows pc to a UNIX box. The ACS would expect a binary image file, so if it is not, i.

You need to check that you have the correct size for the file, i. It must be exactly the same size as specified on the Cisco web site. In the file attached below, the image size is 23,, bytes. If the problem is not what I have just described, please provide further information. The reason for the upgrade was because, ACS cannot put in a static IP and you need to overcome this by a patch. The current version is 4. But now after you have mentioned the file size issue, I need to check this out.

I did get another link on the site regarding this issue. But I will go ahead with your suggestion on your prevoius answer and will check this out and get back to you. Hi Koudry Ive applied the patch which was recommended regarding the ip issue. But when I hyperterminal to the device, it asks me for login and password and once it goes inside, its blank and i dont get to see anything. It looks like you have lost your config on the device. If you have a backup config, you can load it into the device using the copy command.

If you haven't got a backup config, I don't know if you can recover anything from the file system either flash or disk since these devices don't do auto-backup. My web access works.

Is it possible for me to apply another patch and regain connectivity? Yes of course you can apply another patch as you need it. So after you have made sure you have all the patches you need, then you apply the config from the backup and make sure you save the config, i.

If all is well, you should have your device back with the patches and config. You need to check that you have all the configs. Then you can check for the static IP problem that the patch was meant to resolve, to see if the problem is still there before you do anything else. I can access hyperterminal now but not web access and thisis the msg on the terminal Cisco Secure ACS: Its been more than an hour since the status is like this and i cant do anything.

Leave a Reply