https://community.cisco.com/t5/network-access-control/aaa-session-context-error/m-p/1103109#M364559 <HTML><HEAD></HEAD><BODY><P>My Issue is fixed now </P><P></P><P>The "aaa session-id common" command was enabled already . But my Issue was different </P><P></P><P>I got two interfaces from NAS going to two different switches and both were seeing as two different NAS by radius . So sometimes the radius request go from one interface and comes from another interface and it was conflicting the session . </P><P></P><P>As per Cisco , For a call to be disconnected, all parameters must match their expected values at the gateway. If the parameters do not match, the gateway discards the packet of disconnect packet and sends a NACK (negative acknowledgement message) to the agent </P><P></P><P><A class="jive-link-custom" href="http://www.faqs.org/rfcs/rfc2882.html" target="_blank">http://www.faqs.org/rfcs/rfc2882.html</A></P><P></P><P>Regards</P><P>Haris</P></BODY></HTML> Sun, 14 Dec 2008 08:28:15 GMT Haris P 2008-12-14T08:28:15Z https://community.cisco.com/t5/network-access-control/aaa-session-context-error/m-p/1103107#M364557 <P>Dear Experts,</P><P></P><P>We are using Cisco 7301 as our NAS for our DSL users and a third party software as Radius </P><P></P><P>We configured PoD radius server for our DSL . But it seems that radius can't remove the users from the NAS . </P><P></P><P>The following is the error </P><P>Dec 7 20:33:27.547: POD: Added Reply Message: No Matching Session </P><P>Dec 7 20:33:27.547: POD: Added NACK Error Cause: Session Context Not Found </P><P></P><P>The following is my config </P><P></P><P>aaa server radius dynamic-author </P><P>client &lt;radius ip address&gt; </P><P>server-key cisco </P><P>auth-type any </P><P>ignore session-key </P><P>ignore server-key </P><P></P><P>aaa pod server auth-type any server-key cisco </P><P></P><P>Regards </P><P>Haris</P><P></P> Sun, 10 Mar 2019 23:13:26 GMT https://community.cisco.com/t5/network-access-control/aaa-session-context-error/m-p/1103107#M364557 Haris P 2019-03-10T23:13:26Z https://community.cisco.com/t5/network-access-control/aaa-session-context-error/m-p/1103108#M364558 <HTML><HEAD></HEAD><BODY><P>The work around, to avoid this failure, is "aaa session-id common" needs to be enabled.</P></BODY></HTML> Fri, 12 Dec 2008 22:37:37 GMT https://community.cisco.com/t5/network-access-control/aaa-session-context-error/m-p/1103108#M364558 wdrootz 2008-12-12T22:37:37Z https://community.cisco.com/t5/network-access-control/aaa-session-context-error/m-p/1103109#M364559 <HTML><HEAD></HEAD><BODY><P>My Issue is fixed now </P><P></P><P>The "aaa session-id common" command was enabled already . But my Issue was different </P><P></P><P>I got two interfaces from NAS going to two different switches and both were seeing as two different NAS by radius . So sometimes the radius request go from one interface and comes from another interface and it was conflicting the session . </P><P></P><P>As per Cisco , For a call to be disconnected, all parameters must match their expected values at the gateway. If the parameters do not match, the gateway discards the packet of disconnect packet and sends a NACK (negative acknowledgement message) to the agent </P><P></P><P><A class="jive-link-custom" href="http://www.faqs.org/rfcs/rfc2882.html" target="_blank">http://www.faqs.org/rfcs/rfc2882.html</A></P><P></P><P>Regards</P><P>Haris</P></BODY></HTML> Sun, 14 Dec 2008 08:28:15 GMT https://community.cisco.com/t5/network-access-control/aaa-session-context-error/m-p/1103109#M364559 Haris P 2008-12-14T08:28:15Z https://community.cisco.com/t5/network-access-control/aaa-session-context-error/m-p/1103110#M364560 <P>Add below mentioned commands under aaa config of cisco router</P> <P style="font-size: 14px;">ignore session-key</P> <P style="font-size: 14px;">ignore server-key</P> <P style="font-size: 14px;">post it freeradius will start disconnection active sessions on cisco NAS.</P> <P style="font-size: 14px;">Freeradius config.NAS IP( 10.0.0.1)</P> <PRE style="margin-top: 15px; margin-bottom: 15px; padding: 6px 10px; font-family: Consolas, 'Liberation Mono', Courier, monospace; border-color: rgb(204, 204, 204); line-height: 19px; overflow: auto; border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; background-color: rgb(248, 248, 248);"> # echo "Acct-Session-Id=D91FE8E51802097" &gt; packet.txt # echo "User-Name=somebody" &gt;&gt; packet.txt # echo "NAS-IP-Address=10.0.0.1" &gt;&gt; packet.txt # cat packet.txt | radclient -x 10.0.0.1:3799 disconnect ''secret'' Sending Disconnect-Request of id 214 to 10.0.0.1 port 3799 Acct-Session-Id = "D91FE8E51802097" User-Name = "somebody" NAS-IP-Address = 10.0.0.1 rad_recv: Disconnect-ACK packet from host 10.0.0.1 port 3799, id=214, length=20 </PRE> <P>&nbsp;</P> Mon, 09 Jun 2014 14:26:50 GMT https://community.cisco.com/t5/network-access-control/aaa-session-context-error/m-p/1103110#M364560 novanetinc 2014-06-09T14:26:50Z