Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1739
Views
0
Helpful
2
Replies

Endpoint status in visibility remains connected after disconnect

Go to solution
Cloud2
Level 1
Level 1

‎11-09-2021 11:16 PM

Endpoint status in visibility remains "connected" although its already disconnected on switch side...

 

what could cause for such behavior? 

 

 

0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Arne Bier
VIP
VIP

‎11-23-2021 10:54 PM

Hello @Cloud2 

 

that would be due to a lack of AAA RADIUS accounting - you need to tell ISE that the session has ended by means of RADIUS Accounting (Stop).

 

In IOS/IOS-XE, add something along the lines of

 

 

aaa accounting identity default start-stop group radius-ise-group
aaa accounting update newinfo periodic 2880

 

 

The periodic 2880 means, send a RADIUS Accounting Interim Update no later than every 48 hours - it's like a keepalive to let ISE know the session is still there. If the IP address of the client were to change, then the switch will send an update anyway.

View solution in original post

0 Helpful

Go to solution
Cloud2
Level 1
Level 1
In response to Arne Bier

‎11-24-2021 05:55 AM

Hi @Arne Bier ,

Thank you for assistance, I've added the accounting lines into switch config 

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Arne Bier
VIP
VIP

‎11-23-2021 10:54 PM

Hello @Cloud2 

 

that would be due to a lack of AAA RADIUS accounting - you need to tell ISE that the session has ended by means of RADIUS Accounting (Stop).

 

In IOS/IOS-XE, add something along the lines of

 

 

aaa accounting identity default start-stop group radius-ise-group
aaa accounting update newinfo periodic 2880

 

 

The periodic 2880 means, send a RADIUS Accounting Interim Update no later than every 48 hours - it's like a keepalive to let ISE know the session is still there. If the IP address of the client were to change, then the switch will send an update anyway.

0 Helpful

Go to solution
Cloud2
Level 1
Level 1
In response to Arne Bier

‎11-24-2021 05:55 AM

Hi @Arne Bier ,

Thank you for assistance, I've added the accounting lines into switch config 

0 Helpful
Customers Also Viewed These Support Documents