cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

2747
Views
0
Helpful
4
Replies
Highlighted
Enthusiast

ISE 2.2 - No Radius Live Logs or Live Sessions

Hi

Got an issue, was currently under a TAC call, but support contract ran out in mid case, TAC reluctant to carry on and problem not sorted.

Basicaly not getting any live log live sessions for a long time and MAC Books not joining BYOD since last November.

Have ran debugs and sent support bundle, finding as below

---From TAC----

The last normal logs appeared for prrt-server appeared 2017-03-23. – this is log for authentication engine

Profiler log contains only:

2018-06-01 03:00:00,000 INFO   [Timer-5][] profiler.infrastructure.probemgr.event.EPPurgeEventHandler -::- Send Endpoint purge event.

2018-06-01 03:00:00,052 INFO   [EPPurgeEventHandler-20-thread-1][] profiler.infrastructure.probemgr.event.EPPurgeEventHandler -::- Requesting purging.

2018-06-01 03:00:00,182 INFO   [EPPurgeEventHandler-20-thread-1][] profiler.infrastructure.probemgr.event.EPPurgeEventHandler -::- New TASK is running : 06-01-201803:00

2018-06-01 03:00:00,183 INFO   [EPPurgeEventHandler-20-thread-1][] profiler.infrastructure.probemgr.event.EPPurgeEventHandler -::- Purge Endpoints for PurgeID 06-01-201803:00

2018-06-01 03:00:32,534 INFO   [EPPurgeEventHandler-20-thread-1][] profiler.infrastructure.probemgr.event.EPPurgeEventHandler -::- Endpoints PurgeID '06-01-201803:00' purged 0 in 32351 millisec

2018-06-01 03:00:32,534 INFO   [EPPurgeEventHandler-20-thread-1][] profiler.infrastructure.probemgr.event.EPPurgeEventHandler -::- Releasing purging.

2018-06-01 13:56:46,494 INFO   [main][] com.cisco.profiler.api.Util -::- EventHandlerQueueSize Limit initialized to: 10000

And it means it has nothing.

TCPdump from MNT shows that there are only 9 packets and it contain info only for

WLAN revwatts, Calling-Station-ID=40-a3-cc-44-74-42

No any Authentication.

Other important logs are empty or absent or do not contains any valuable info.

For me, it looks like something has happened at 2017-03-23 - 2017-03-24, After that, PSN does not work properly.

There are errors in ORACLE DB as well.

This PSN has to be reimaged – clean ISE installation; install patch 7; join back to the deployment.


----------


So I've re imaged the PSN appliance while engineer on training course, and this didn't fix the issue. 


Now stuck in limbo, don't want to have to rebuild deployment if can help it as this is a 24/7 environment.


cheer

1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Enthusiast

Thought would share, TAC found the issue.

It was under to do with Logging Categories missing after upgrading to 2.2, a AAA category was missing.

TAC had to inject the logging-categoriesise22p4-23p1.sql then perform a manual SYNC on the deployment.

cheers

View solution in original post

4 REPLIES 4
Highlighted
Cisco Employee

You will need to ask the tac to escalate to duty manager

They are best to work troubleshoot support issues

Highlighted
Enthusiast

Thought would share, TAC found the issue.

It was under to do with Logging Categories missing after upgrading to 2.2, a AAA category was missing.

TAC had to inject the logging-categoriesise22p4-23p1.sql then perform a manual SYNC on the deployment.

cheers

View solution in original post

Highlighted

They would need root access to do this so anyone having issue should work through tac

Highlighted

Likely CSCvg48996. Thanks for sharing.

Content for Community-Ad