Hi,
One of our remote offices is having real issues with Wireless connectivity.
The errors we have been receiving are as follows:
| Event | 5440 Endpoint abandoned EAP session and started new |
| Failure Reason | 5440 Endpoint abandoned EAP session and started new |
| Resolution | Verify known NAD or supplicant issues and published bugs. Verify NAD and supplicant configuration. |
| Root cause | Endpoint started new authentication while previous is still in progress. Most probable that supplicant on that endpoint stopped conducting the previous authentication and started the new one. Closing the previous authentication |
*apfMsConnTask_0: Jul 22 11:52:31.810: 58:94:6b:2b:53:0c Association received from mobile on AP c4:7d:4f:35:a7:e0
And after a while those logs will be repeated :
*dot1xMsgTask: Jul 22 11:52:31.872: 58:94:6b:2b:53:0c Sending EAP-Request/Identity to mobile 58:94:6b:2b:53:0c (EAP Id 1)
*osapiBsnTimer: Jul 22 11:52:36.848: 58:94:6b:2b:53:0c 802.1x 'txWhen' Timer expired for station 58:94:6b:2b:53:0c and for message = M0
*dot1xMsgTask: Jul 22 11:52:36.848: 58:94:6b:2b:53:0c dot1x - moving mobile 58:94:6b:2b:53:0c into Connecting state
*dot1xMsgTask: Jul 22 11:52:36.849: 58:94:6b:2b:53:0c Sending EAP-Request/Identity to mobile 58:94:6b:2b:53:0c (EAP Id 2)
*osapiBsnTimer: Jul 22 11:52:41.848: 58:94:6b:2b:53:0c 802.1x 'txWhen' Timer expired for station 58:94:6b:2b:53:0c and for message = M0
*dot1xMsgTask: Jul 22 11:52:41.849: 58:94:6b:2b:53:0c dot1x - moving mobile 58:94:6b:2b:53:0c into Connecting
And after 13 retries :
*dot1xMsgTask: Jul 22 11:53:31.849: 58:94:6b:2b:53:0c Reached Max EAP-Identity Request retries (13) for STA 58:94:6b:2b:53:0c
*dot1xMsgTask: Jul 22 11:53:31.849: 58:94:6b:2b:53:0c Sent Deauthenticate to mobile on BSSID c4:7d:4f:35:a7:e0 slot 1(caller 1x_auth_pae.c:3057)
*apfMsConnTask_0: Jul 22 11:52:31.810: 58:94:6b:2b:53:0c Association received from mobile on AP c4:7d:4f:35:a7:e0
And after a while those logs will be repeated :
*dot1xMsgTask: Jul 22 11:52:31.872: 58:94:6b:2b:53:0c Sending EAP-Request/Identity to mobile 58:94:6b:2b:53:0c (EAP Id 1)
*osapiBsnTimer: Jul 22 11:52:36.848: 58:94:6b:2b:53:0c 802.1x 'txWhen' Timer expired for station 58:94:6b:2b:53:0c and for message = M0
*dot1xMsgTask: Jul 22 11:52:36.848: 58:94:6b:2b:53:0c dot1x - moving mobile 58:94:6b:2b:53:0c into Connecting state
*dot1xMsgTask: Jul 22 11:52:36.849: 58:94:6b:2b:53:0c Sending EAP-Request/Identity to mobile 58:94:6b:2b:53:0c (EAP Id 2)
*osapiBsnTimer: Jul 22 11:52:41.848: 58:94:6b:2b:53:0c 802.1x 'txWhen' Timer expired for station 58:94:6b:2b:53:0c and for message = M0
*dot1xMsgTask: Jul 22 11:52:41.849: 58:94:6b:2b:53:0c dot1x - moving mobile 58:94:6b:2b:53:0c into Connecting
And after 13 retries :
*dot1xMsgTask: Jul 22 11:53:31.849: 58:94:6b:2b:53:0c Reached Max EAP-Identity Request retries (13) for STA 58:94:6b:2b:53:0c
*dot1xMsgTask: Jul 22 11:53:31.849: 58:94:6b:2b:53:0c Sent Deauthenticate to mobile on BSSID c4:7d:4f:35:a7:e0 slot 1(caller 1x_auth_pae.c:3057)
We have tried changing the timeout from 5 to 15 and then 20 seconds but this is still not helping the cause.
The problem is persistent but also appears to be random in who it affects.
I've been leaning to the issue being with DHCP and Authentication but has anyone encountered this previously and what was the fix if any?
I'm also aware of discussions on here about a bug that will be fixed in ISE1.3 but cannot wait for this.
Any help/guidance would be greatly appreciated
Thanks
Jason
Step latency=18095 ms)
