cancel
Showing results for 
Search instead for 
Did you mean: 

Backup Auth server

Highlighted
Occasional Contributor

Backup Auth server

Hello all,

I tested authentication via backup Auth server ( RSA manager configured) while the primary RSA was upgrading. I was able to authenticate from user perspective but I didn't find evidences that I was authenticated by backup Auth server.

Here is the user log from Pulse Secure SA4500:
Info PTR23276 2017/03/21 04:40:24 - ZZFDC2VPN2 - [****] - Gucci::CON-khairullin.aida(EMEA-RSA)[] - Password realm restrictions successfully passed for CON-khairullin.aida/EMEA-RSA
Info PTR23276 2017/03/21 04:40:24 - ZZFDC2VPN2 - [****] - Gucci::CON-khairullin.aida(EMEA-RSA)[] - Password realm restrictions successfully passed for CON-khairullin.aida/EMEA-RSA
Info PTR23370 2017/03/21 04:40:24 - ZZFDC2VPN2 - [****] - Gucci::CON-khairullin.aida(EMEA-RSA)[] - Attempting to authenticate user "CON-khairullin.aida" with auth server "RSA"
Info PTR22834 2017/03/21 04:40:54 - ZZFDC2VPN2 - ****:Smiley Frustratedystem()[] - Radius Server RSA: Login failed for CON-khairullin.aida because host 172.25.193.230:1812 is unreachable.
Info PTR23344 2017/03/21 04:40:56 - ZZFDC2VPN2 - [****] - Gucci::CON-khairullin.aida(EMEA-RSA)[] - Authentication successful to auth server "RSA"

As you can see the authentication failed via Primary server but then just notification that authentication successful.

Does it mean that I was authenticated via backup server? Is there another way to check it on SSLVPN device?

Thank you.
1 REPLY 1
Highlighted
Moderator

Re: Backup Auth server

If the IP that is not reachable is the one that was upgrading, yes, that would indicate that the backup worked