Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
778
Views
0
Helpful
1
Replies

Cisco switch c2960 - switchport reauthC happen continuously with connected MAB device

Go to solution
Looi Siew Key
Level 1
Level 1

‎06-16-2017 12:19 AM

Hi All,

We have issue on ISE deployment after apply enforcement mode in switchport for LAN user.

First issue

Authentication for dot1x and MAB fail directly without any timeout, it recover back to MAB without any troubleshooting done.

Second issue

After recover to MAB passed, the reauth timer for the MAB device (printer HP M602) will be every 1 minutes.

Means every single minutes we will saw the report is dot1x failed, mab passed (as our priority to dot1x in all switchport).

Perform port bounce but still facing same issue, we are now focus on second issue to avoid multiple failure on report, and minimize authentication latency happen in short period.

Please advise.

1 person had this problem
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Timothy Abbott
Cisco Employee
Cisco Employee

‎06-20-2017 06:43 AM

It sound like you have a low reauth value on the switch port or configured as part of the authorization result set to a low value.  Please see the universal switch configuration for recommendations on how switch ports sound be configured.

How To: Universal IOS Switch Config for ISE

Regards,

-Tim

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Timothy Abbott
Cisco Employee
Cisco Employee

‎06-20-2017 06:43 AM

It sound like you have a low reauth value on the switch port or configured as part of the authorization result set to a low value.  Please see the universal switch configuration for recommendations on how switch ports sound be configured.

How To: Universal IOS Switch Config for ISE

Regards,

-Tim

0 Helpful
Customers Also Viewed These Support Documents