Mab authentication in domain Unknown after network device reboot

SMD28316 · ‎02-01-2022

After a network device gets reloaded, I see that the endpoints not getting to the proper domain (voice or data) but they get placed in the unknown VLAN instead.

I can resolve this by manually doing a shut no sh to the interface, could the issue be related to stale sessions on the switch? Shouldn't they be cleared once rebooted?

Damien Miller · ‎02-01-2022

Can you share the switch platform and software version you're running? It sounds like a bug I have seen.

SMD28316 · ‎02-01-2022

I am having this issue with C9300, OS 17.6.2 , and 17.3.4

balaji.bandi · ‎02-01-2022

Not sure is this your case - I may have encountered this past, is the configuration on the switch intact ? or was any config lost when it was rebooted?

Can you post the below output :

show auth sess

show auth sess interface x/x detailed

or this could be a bug as @Damien Miller mentioned..

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

royce.varughese.1984 · ‎07-20-2025

Don't think this was resolved. Noticed same during a recent testing for MAB clients mainly. ISE did not report any issue but switch reported "Unknown" against domain.

MHM Cisco World · ‎07-20-2025

Please make new post

MHM

royce.varughese.1984 · ‎07-20-2025

Was trying to use an existing thread if that was okay to eliminate duplicate threads for same issues.

MHM Cisco World · ‎07-21-2025

I know but even if it solve here you can not close issue.

That why

Waiting you friend

MHM

balaji.bandi · ‎07-21-2025

i would expect to post more information - rather just unknown error.

ISE version

what switch Model and IOS Code ?

how does switch configuration look like ?

what kind of end device ?

what is ISE real time logs show ?

post switch debug output ?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help