Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1281
Views
0
Helpful
3
Replies

Cisco ISE Radius Live log is empty

Go to solution
Tiroyaone72926925
Level 1
Level 1

‎05-21-2023 07:17 AM - edited ‎05-21-2023 07:21 AM

I have built a 0home virtual lab and it comprises the following devices: CISCO ISE 3.2, Windows Server with CA,AD,DNS roles, and an access switch serving as NTP and NAD.

ISE and AD are integrated.

ISSUE: 

when i test RADIUS authentication on the switch using  #test aaa group <ISEGROUP> <username> <password1> new-code, 

i get User successfully authenticated message which is OK, 

However, i can't see the live sessions/logs ISE, It is empty. 

in an attempt to resolve the issue: I have disabled "ISE Messaging Service", generated CSR for ise messaging, and re-enabled ISE messaging, but it couldn't work. 

Below are my radius configs on the switch:

aaa new-model
aaa group server radius ISEGROUP
server name ISESERVER
ip radius source-interface Vlan1

aaa authentication dot1x default group ISEGROUP
aaa authorization network default group ISEGROUP
aaa authorization auth-proxy default group ISEGROUP
aaa accounting update periodic 5
aaa accounting dot1x default start-stop group ISEGROUP
aaa accounting system default start-stop group ISEGROUP

aaa server radius dynamic-author
client 192.168.48.2 server-key PasswordISE
aaa session-id common

ip name-server 192.168.48.11
ip device tracking

!
dot1x system-auth-control
!
interface Vlan1
ip address 192.168.48.254 255.255.255.0
!
ip default-gateway 192.168.48.4
radius-server attribute 6 on-for-login-auth
radius-server attribute 6 support-multiple
radius-server attribute 8 include-in-access-req
radius-server attribute 25 access-request include
radius-server attribute 31 send nas-port-detail
radius-server dead-criteria time 5 tries 3
radius-server cache expiry 1
radius-server vsa send accounting
radius-server vsa send authentication
!
radius server ISESERVER
address ipv4 192.168.48.2 auth-port 1812 acct-port 1813
key PasswordISE

 

 

 

Preview file
10 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Tiroyaone72926925
Level 1
Level 1
In response to Arne Bier

‎05-22-2023 06:10 AM

I am rebuilding the server, I will try your suggestion and get back to you

 

View solution in original post

0 Helpful
3 Replies 3

Go to solution
SHABEEB KUNHIPOCKER
Level 3
Level 3

‎05-21-2023 12:00 PM

Have you checked the time/timezone on the ISE CLI?. 

0 Helpful

Go to solution
Arne Bier
VIP
VIP

‎05-21-2023 01:40 PM

Are you perhaps suppressing the logging of "username" (sorry ... I had to ask

Administration > System > Logging > Collection Filters

If not - Is this a standalone ISE node?  If you're seeing Queue Link Errors in the Alarms Dashboard, then you should generate a CSR to regenerate the internal ISE Root CA cert. That fixes that. It might be related to the Live Logs.

Have you applied any patch to ISE 3.2 ? Patch 2 is out now - worth trying that.

0 Helpful

Go to solution
Tiroyaone72926925
Level 1
Level 1
In response to Arne Bier

‎05-22-2023 06:10 AM

I am rebuilding the server, I will try your suggestion and get back to you

 

0 Helpful
Customers Also Viewed These Support Documents