Have you put a new domain controller on line, that might not be in your traffic rules?
John J. Tumblin RHCE Systems Lead Network Engineer The TJX Companies, Inc. Direct 508-390-2738 Cell 508-958-9110 email: [email protected] "Allen, Richard D CW2 NG NG NGB" <[email protected]> Sent by: Cisco Clean Access Users and Administrators <[email protected]> 08/26/2011 01:48 PM Please respond to Cisco Clean Access Users and Administrators <[email protected]> To [email protected] cc Subject Re: One step closer... (UNCLASSIFIED) Classification: UNCLASSIFIED Caveats: NONE Yes - when doing the auth test it comes back correct. The strange part is that it is only from a cold boot. When I boot up it will not do SSO but if I simply log out and back in SSO performs correctly. -----Original Message----- From: Cisco Clean Access Users and Administrators [mailto:[email protected]] On Behalf Of Daniel T Sent: Friday, August 26, 2011 12:08 PM To: [email protected] Subject: Re: One step closer... (UNCLASSIFIED) Richard, It sounds like it is only reading cached credentials to me. Do you get successful replies when you use "Auth Test". User Management -> Auth Servers -> Auth Test Then enter username with ADSSO as the provider. If that is not getting proper replies, you might need to use some LDAP tool to see what you are getting. Regards, /Daniel On Fri, Aug 26, 2011 at 9:39 AM, Allen, Richard D CW2 NG NG NGB <[email protected]> wrote: > Classification: UNCLASSIFIED > Caveats: NONE > > After enabling NAT to allow certificate CRL validation I am able to > complete SSO with smart card. Except.. > > > > From a complete cold boot SSO does not execute and instead I get the > agent login screen. If I don't log in to the agent and simply log out > and back into windows SSO processes me as expected. Any suggestions on > what may be happening? > > > > Richard Allen > > CW2, SC, TNARNG > > J6 JFHQ > > 3041 Sidco Drive > > Nashville, TN 37204 > > Comm: 615-313-7522 > > DSN 683-7522 > > > > Classification: UNCLASSIFIED > Caveats: NONE > > Classification: UNCLASSIFIED Caveats: NONE
