Solarwinds is causing a multiple authentication request to our network nodes for last few days. After we shut down solarwinds, there are no authentication request comign to my tacacs server. After I bring it up, 1000's of authentication request.
Story : We login to our routers using our domain credential. Router uses tacacs server to authenticate the user after which user can login. Our solarwinds NCM is configured to use my domain credential (as a connection profile) to login and download the configs. Recently, my domain credentials were changed in our DC and hence solarwinds could not login to routers using my saved credential (connection profile in NCM). However I've updated the connection profile with the new credential. Infact as a good solution, I used another account so that solarwinds does not depend on my domain cred any longer. Long story short, same connection profile with updated credentials. The connection profile works and can download configs. However solarwinds seems to still login to routers (1000's of requests) with the same old credentials which is causing my domain account to lock causing me to unlock it everytime.
What could be causing this? Any old processes that is running behind?
Need help asap as my domain account is locking me out every 5 mins.
When I shut down solarwinds, my domain account is ALIVE until I solarwinds is back up.