Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2269
Views
5
Helpful
2
Replies

cisco ISE | Issue in ISE radius integration with Nokia Siemens devices.

filipeavelino
Level 1
Level 1

‎03-05-2021 08:01 AM

Hi,

 

I am having a tough time to use the ISE to authenticate the Nokia / Siemens switches. The log in ISE is fine (5200 auth), but Nokia / Siemens switch showed login failed. I have been using the ACS for Nokia / Siemens.

2021-03-05 16_57_22-Document1 - Word.png

 

 

In the logs I see - 22081 Max sessions policy passed - but there are not session limit restrictions for the groups or individual users from the internal identity store.

 

Any help would be appreciated. Thanks!

 

 

BR

 

Filipe

 

 

 
0 Helpful
2 Replies 2

thomas
Cisco Employee
Cisco Employee

‎03-13-2021 01:06 PM

> Nokia / Siemens switch showed login failed

Please provide actual switch log(s)/message to understand the mismatch between RADIUS Access-Accept on ISE LiveLog details and "login failed" on the switch.

It would help to know what your actual Authorization Profile is that you are returning from ISE to the Nokia Siemens devices. Maybe they need more than an Access Accept to enable the port? A VLAN assignment? They shouldn't need Vendor-Specific attributes for basic access.

0 Helpful

Marcelo Morais
VIP
VIP

‎03-13-2021 04:20 PM

Hi @filipeavelino ,

 when you said "I see - 22081 Max sessions policy passed - but there are not session limit restrictions for the groups or individual users from the internal identity store." ... please take a look at:

Administration > System > Settings > Max Sessions
check the config of the User and Group tab


Hope this helps !!!

Customers Also Viewed These Support Documents