Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
642
Views
0
Helpful
1
Replies

multiple Failed authentication attempts

mosc9562
Level 1
Level 1

‎07-16-2015 05:57 AM - edited ‎03-10-2019 10:54 PM

Hello,

 

We have ISE 1.2 patch 14 running.  We are getting a lot of failed authentications.  I found a handful of PCs that are failing, and the failing authentication is not the issue.  The problem is that they continuously try to re-authenticate, ever few minutes.  I checked the authorization profile they are hitting and Reauthentication checkbox is not selected.  The port this one PC is connected to had the command 'authentication timer reauthenticate server'.  In testing I changed this to 'authentication timer reauthenticate 14400' (4 hours) but the PC still tries to authenticate every couple minutes.  What am I doing wrong or what am I missing??

This is the entire port config:

interface GigabitEthernet1/6
 switchport
 switchport access vlan 200
 switchport mode access
 ip access-group ACL-ALLOW in
 authentication event server dead action authorize
 authentication event server alive action reinitialize
 authentication order dot1x mab
 authentication priority dot1x mab
 authentication port-control auto
 authentication periodic
 authentication timer reauthenticate 14400
 authentication violation restrict
 mab
 snmp trap mac-notification change added
 snmp trap mac-notification change removed
 dot1x pae authenticator
 spanning-tree portfast edge
 ip dhcp snooping limit rate 15
end

Thanks.

1 person had this problem
Labels:
0 Helpful
1 Reply 1

hdussa
Level 1
Level 1

‎07-27-2015 05:25 AM

Hi,

 

try authentication timer restart 900 (= 15 minutes.).

If you are using MAB you should not use reauthentication.

0 Helpful
Customers Also Viewed These Support Documents