Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2920
Views
5
Helpful
1
Replies

5400 Authentication failed - ISE - Happening Randomly to users

mr-leeguan
Level 1
Level 1

‎08-24-2021 10:53 AM - edited ‎08-24-2021 11:12 AM

Hi,

Would appreciate if I can get some tips or ideas on what the issue might be. Seems that users do get an IP address as they cannot be authenticated. Looks like it might be between ISE and Active directory, however so far have not found the exact problem. Below are some of the outputs received, on ISE side:

EVENT:                                5400 Authentication failed
Failure Reason15039 Rejected per authorization profile
ResolutionAuthorization Profile with ACCESS_REJECT attribute was selected as a result of the matching authorization rule. Check the appropriate Authorization policy rule-results.
Root causeSelected Authorization Profile contains ACCESS_REJECT attribute

 

Any little help will be greatly appreciated

Labels:
1 Reply 1

Mike.Cifelli
VIP Alumni
VIP Alumni

‎08-24-2021 01:07 PM

Missing some valuable information here, but this seems to be an issue with the authz policy the client is hitting during authz.  I would start with double checking the authz profile that is assigned as the result.  Also, this could be possible if the client/s are hitting the default catch all policy which is resulting in the reject.  Additional info that would aide the community includes:

-Detailed radius live log steps

-Type of auth (dot1x/mab?)

-AAA/interface config

0 Helpful
Customers Also Viewed These Support Documents