Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5636
Views
5
Helpful
5
Replies

%AUTHMGR-7-RESULT: Authentication result 'server dead' from 'mab'

Go to solution
Ibrahim Jamil
Level 6
Level 6

‎10-25-2017 07:42 AM - edited ‎02-21-2020 10:37 AM

Hello Guys

 

pls see below logs ,i m getting it when AP-MAB needs to authentication/and authorize , i have added correctly the mac of the AP to ISE end points

 

the SW and the ISE  has successful authentication ,

 

 

Switch(config-if)#
*Mar  1 04:19:58.582: %LINK-5-CHANGED: Interface FastEthernet0/1, changed state to administratively down
*Mar  1 04:19:59.580: %ILPOWER-7-DETECT: Interface Fa0/1: Power Device detected: IEEE PD
*Mar  1 04:19:59.589: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to down
*Mar  1 04:19:59.664: %ILPOWER-5-POWER_GRANTED: Interface Fa0/1: Power granted
*Mar  1 04:20:01.233: %LINK-3-UPDOWN: Interface FastEthernet0/1, changed state to down
*Mar  1 04:20:04.379: %LINK-3-UPDOWN: Interface FastEthernet0/1, changed state to up
Switch(config-if)#
Switch(config-if)#
*Mar  1 04:22:10.283: %AUTHMGR-5-START: Starting 'mab' for client (5503.a781.1157) on Interface Fa0/1 AuditSessionID 9601072D0000000400EE12CF
*Mar  1 04:22:10.283: %MAB-5-FAIL: Authentication failed for client (5503.a781.1157) on Interface Fa0/1 AuditSessionID 9601072D0000000400EE12CF
*Mar  1 04:22:10.283: %AUTHMGR-7-RESULT: Authentication result 'server dead' from 'mab' for client (5503.a781.1157) on Interface Fa0/1 AuditSessionID 9601072D0000000400EE12CF
*Mar  1 04:22:10.283: %AUTHMGR-5-FAIL: Authorization failed for client (5503.a781.1157) on Interface Fa0/1 AuditSessionID 9601072D0000000400EE12CF

1 person had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Mohammed al Baqari
Level 11
Level 11
In response to Ibrahim Jamil

‎10-25-2017 09:48 AM

You need to check radius connectivity on ports 1812 and 1813 udp. If you
type show aaa server in the switch you will see the radius status dead

View solution in original post

5 Replies 5

Go to solution
Mohammed al Baqari
Level 11
Level 11

‎10-25-2017 08:57 AM

Verify the connectivity between switch and ise. The reason of failure is
ise not reachable from switch
0 Helpful

Go to solution
Ibrahim Jamil
Level 6
Level 6
In response to Mohammed al Baqari

‎10-25-2017 09:24 AM

Hello Mohammed

 

yep , they do reach each other

 

thanks

0 Helpful

Go to solution
Mohammed al Baqari
Level 11
Level 11
In response to Ibrahim Jamil

‎10-25-2017 09:48 AM

You need to check radius connectivity on ports 1812 and 1813 udp. If you
type show aaa server in the switch you will see the radius status dead

Go to solution
Ibrahim Jamil
Level 6
Level 6
In response to Mohammed al Baqari

‎10-26-2017 11:08 PM

Thanks mohamad

0 Helpful

Go to solution
Mohammed al Baqari
Level 11
Level 11
In response to Ibrahim Jamil

‎10-27-2017 02:06 AM

Please remember to rate useful posts
0 Helpful
Customers Also Viewed These Support Documents