https://community.cisco.com/t5/network-access-control/multiple-failed-authentication-attempts/m-p/2679048#M54744 <P>Hello,</P><P>&nbsp;</P><P>We have ISE 1.2 patch 14 running.&nbsp; We are getting a lot of failed authentications.&nbsp; I found a handful of PCs that are failing, and the failing authentication is not the issue.&nbsp; The problem is that they continuously try to re-authenticate, ever few minutes.&nbsp; I checked the authorization profile they are hitting and Reauthentication checkbox is not selected.&nbsp; The port this one PC is connected to had the command 'authentication timer reauthenticate server'.&nbsp; In testing I changed this to 'authentication timer reauthenticate 14400' (4 hours) but the PC still tries to authenticate every couple minutes.&nbsp; What am I doing wrong or what am I missing??</P><P>This is the entire port config:</P><P>interface GigabitEthernet1/6<BR />&nbsp;switchport<BR />&nbsp;switchport access vlan 200<BR />&nbsp;switchport mode access<BR />&nbsp;ip access-group ACL-ALLOW in<BR />&nbsp;authentication event server dead action authorize<BR />&nbsp;authentication event server alive action reinitialize<BR />&nbsp;authentication order dot1x mab<BR />&nbsp;authentication priority dot1x mab<BR />&nbsp;authentication port-control auto<BR />&nbsp;authentication periodic<BR />&nbsp;authentication timer reauthenticate 14400<BR />&nbsp;authentication violation restrict<BR />&nbsp;mab<BR />&nbsp;snmp trap mac-notification change added<BR />&nbsp;snmp trap mac-notification change removed<BR />&nbsp;dot1x pae authenticator<BR />&nbsp;spanning-tree portfast edge<BR />&nbsp;ip dhcp snooping limit rate 15<BR />end</P><P>Thanks.</P> Mon, 11 Mar 2019 05:54:48 GMT mosc9562 2019-03-11T05:54:48Z https://community.cisco.com/t5/network-access-control/multiple-failed-authentication-attempts/m-p/2679048#M54744 <P>Hello,</P><P>&nbsp;</P><P>We have ISE 1.2 patch 14 running.&nbsp; We are getting a lot of failed authentications.&nbsp; I found a handful of PCs that are failing, and the failing authentication is not the issue.&nbsp; The problem is that they continuously try to re-authenticate, ever few minutes.&nbsp; I checked the authorization profile they are hitting and Reauthentication checkbox is not selected.&nbsp; The port this one PC is connected to had the command 'authentication timer reauthenticate server'.&nbsp; In testing I changed this to 'authentication timer reauthenticate 14400' (4 hours) but the PC still tries to authenticate every couple minutes.&nbsp; What am I doing wrong or what am I missing??</P><P>This is the entire port config:</P><P>interface GigabitEthernet1/6<BR />&nbsp;switchport<BR />&nbsp;switchport access vlan 200<BR />&nbsp;switchport mode access<BR />&nbsp;ip access-group ACL-ALLOW in<BR />&nbsp;authentication event server dead action authorize<BR />&nbsp;authentication event server alive action reinitialize<BR />&nbsp;authentication order dot1x mab<BR />&nbsp;authentication priority dot1x mab<BR />&nbsp;authentication port-control auto<BR />&nbsp;authentication periodic<BR />&nbsp;authentication timer reauthenticate 14400<BR />&nbsp;authentication violation restrict<BR />&nbsp;mab<BR />&nbsp;snmp trap mac-notification change added<BR />&nbsp;snmp trap mac-notification change removed<BR />&nbsp;dot1x pae authenticator<BR />&nbsp;spanning-tree portfast edge<BR />&nbsp;ip dhcp snooping limit rate 15<BR />end</P><P>Thanks.</P> Mon, 11 Mar 2019 05:54:48 GMT https://community.cisco.com/t5/network-access-control/multiple-failed-authentication-attempts/m-p/2679048#M54744 mosc9562 2019-03-11T05:54:48Z https://community.cisco.com/t5/network-access-control/multiple-failed-authentication-attempts/m-p/2679049#M54745 <P>Hi,</P><P>&nbsp;</P><P>try&nbsp;authentication timer restart 900 (= 15 minutes.).</P><P>If you are using MAB you should not use reauthentication.</P> Mon, 27 Jul 2015 12:25:44 GMT https://community.cisco.com/t5/network-access-control/multiple-failed-authentication-attempts/m-p/2679049#M54745 hdussa 2015-07-27T12:25:44Z