Solved: ISE 2.2 - No Radius Live Logs or Live Sessions

craiglebutt · ‎06-19-2018

Hi

Got an issue, was currently under a TAC call, but support contract ran out in mid case, TAC reluctant to carry on and problem not sorted.

Basicaly not getting any live log live sessions for a long time and MAC Books not joining BYOD since last November.

Have ran debugs and sent support bundle, finding as below

---From TAC----

The last normal logs appeared for prrt-server appeared 2017-03-23. – this is log for authentication engine

Profiler log contains only:

2018-06-01 03:00:00,000 INFO [Timer-5][] profiler.infrastructure.probemgr.event.EPPurgeEventHandler -::- Send Endpoint purge event.

2018-06-01 03:00:00,052 INFO [EPPurgeEventHandler-20-thread-1][] profiler.infrastructure.probemgr.event.EPPurgeEventHandler -::- Requesting purging.

2018-06-01 03:00:00,182 INFO [EPPurgeEventHandler-20-thread-1][] profiler.infrastructure.probemgr.event.EPPurgeEventHandler -::- New TASK is running : 06-01-201803:00

2018-06-01 03:00:00,183 INFO [EPPurgeEventHandler-20-thread-1][] profiler.infrastructure.probemgr.event.EPPurgeEventHandler -::- Purge Endpoints for PurgeID 06-01-201803:00

2018-06-01 03:00:32,534 INFO [EPPurgeEventHandler-20-thread-1][] profiler.infrastructure.probemgr.event.EPPurgeEventHandler -::- Endpoints PurgeID '06-01-201803:00' purged 0 in 32351 millisec

2018-06-01 03:00:32,534 INFO [EPPurgeEventHandler-20-thread-1][] profiler.infrastructure.probemgr.event.EPPurgeEventHandler -::- Releasing purging.

2018-06-01 13:56:46,494 INFO [main][] com.cisco.profiler.api.Util -::- EventHandlerQueueSize Limit initialized to: 10000

And it means it has nothing.

TCPdump from MNT shows that there are only 9 packets and it contain info only for

WLAN revwatts, Calling-Station-ID=40-a3-cc-44-74-42

No any Authentication.

Other important logs are empty or absent or do not contains any valuable info.

For me, it looks like something has happened at 2017-03-23 - 2017-03-24, After that, PSN does not work properly.

There are errors in ORACLE DB as well.

This PSN has to be reimaged – clean ISE installation; install patch 7; join back to the deployment.

----------

So I've re imaged the PSN appliance while engineer on training course, and this didn't fix the issue.

Now stuck in limbo, don't want to have to rebuild deployment if can help it as this is a 24/7 environment.

cheer

craiglebutt · ‎06-21-2018

Thought would share, TAC found the issue.

It was under to do with Logging Categories missing after upgrading to 2.2, a AAA category was missing.

TAC had to inject the logging-categoriesise22p4-23p1.sql then perform a manual SYNC on the deployment.

cheers

View solution in original post

Jason Kunst · ‎06-19-2018

You will need to ask the tac to escalate to duty manager

They are best to work troubleshoot support issues

craiglebutt · ‎06-21-2018

Thought would share, TAC found the issue.

It was under to do with Logging Categories missing after upgrading to 2.2, a AAA category was missing.

TAC had to inject the logging-categoriesise22p4-23p1.sql then perform a manual SYNC on the deployment.

cheers

Jason Kunst · ‎06-21-2018

They would need root access to do this so anyone having issue should work through tac

hslai · ‎06-22-2018

Likely CSCvg48996. Thanks for sharing.