Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1091
Views
0
Helpful
2
Replies

IBNS, dot1x, how do I decode event id's

ZbigniewJ
Level 1
Level 1

‎06-09-2017 12:02 AM - edited ‎03-11-2019 12:46 AM

Hello, im struggling to debug some problem with my IBNS deployment. I'm trying to walk through every step it takes to authenticate and authorize a client but although i turned on every debugging option that came to my mind i still can find what i want:

#debug pre all

Jun 9 06:35:50.081: [PRE:RULE:EVENT:B4000084] Executing policy-map type control subscriber POLICY_DEFAULT_ACCESS_INTERFACE
Jun 9 06:35:50.081: [PRE:RULE:EVENT] eval_default_action: No Default action for this clid[2] and eventid[21]
Jun 9 06:35:50.081: [PRE:RULE:EVENT:B4000084] no event-id match found. nothing to run against in policy.
Jun 9 06:35:50.085: [PRE:RULE:EVENT:B4000084] Executing policy-map type control subscriber POLICY_DEFAULT_ACCESS_INTERFACE
Jun 9 06:35:50.085: [PRE:RULE:EVENT:B4000084] event (id:19 name:agent-found) match-all
Jun 9 06:35:50.085: [PRE:RULE:EVENT:B4000084] class always do-until-failure policy instance 0x9200004C
Jun 9 06:35:50.085: [PRE:RULE:EVENT:B4000084] Evaluate: class-map type control match-all subscriber always
Jun 9 06:35:50.085: [PRE:RULE:EVENT:B4000084] evaluated class map: success

How do i find a mapping between eventid[number] and event as configured in policy (session-started, agent-found, authentication-success match-all etc)?
Please note, that if a rule for particular event id is defined, it gets resolved in the debug (id:19 name:agent-found) but when no action is defined i only see a number.

Thanks in advance!

1 person had this problem
Labels:
0 Helpful
2 Replies 2

ppagliaro
Level 1
Level 1

‎05-31-2022 03:24 AM

Actually to my knowledge there's no comprehensive and structured documentation on this topic, which would spare a lot of pain and time when implementing this powerful solution.
What can be found is only some generic explanation, maybe in the command reference, and some example, mostly in the form of ready-made template.

0 Helpful

andrewswanson
Level 7
Level 7

‎05-31-2022 03:48 AM

I use the following command when checking identity control policies - the "detail" option output shows the number of times an action has been executed:

 

show policy-map type control subscriber <YOUR_POLICY> detail

 

These counters can be cleared with:

 

clear policy-map control subscriber name <YOUR_POLICY>

 

I found this method easier than going through a lot of debugs

hth
Andy

0 Helpful
Customers Also Viewed These Support Documents