01-29-2019 01:51 AM
We faced with an issue 5440 Endpoint abandoned EAP session and started new
Use case: Corporate users using corporate machine – Dot1x authentication using certificates (User + Machine) EAP-FAST and Posture assessment
Network Devices:
Cisco WS-3750X - IOS 15.2(4)E7
Cisco WS-3650 - IOS 16.3.7
Deployment details:
ISE 2.4.0.357, Patch 1,2,3,4,5
AnyConnect module v.4.7.00136
Windows 7, 10.
Use case works perfect with 3650 switch IOS 16.3.7 on Win7 and Win10.
But if we trying to use 3750X with IOS 15.2(4)E7, we have a problems only with Win10 while Win7 works correctly.
02-12-2019 12:59 AM - edited 02-12-2019 01:01 AM
While troubleshooting we mentioned that use case AnyConnect NAM: EAP-FAST(User and machine using EAP-MSCHAPv2) works fine.
But if we trying to configure Win10 supplicant to use EAP-TLS, so in this case authorization fails. Native supplicant also works fine with certs.
After reviewing DART file, we mentioned, that endpoint sends an error message: internal error 204 contact software manufacturer.
Does anyone have faced with the same issue?
02-15-2019 08:35 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide