Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1654
Views
0
Helpful
3
Replies

Random Authentication fails on ISE

lowfell
Level 3
Level 3

‎07-06-2020 08:21 AM - last edited on ‎07-11-2020 10:02 AM by Cisco Employee

Random authentication fails. Ssers will generally authnticate but randomly don't . affecting various users all random.

 

5400 Authentication failed

15039 Rejected Per authorization Profile


The Authorization profile though has never changed.

They are on version Ise version 2.4.0357 patch 10

0 Helpful
3 Replies 3

paul
Level 10
Level 10

‎07-06-2020 10:01 AM

The step data in the details of the failure should tell you what is happening.  Can you post the step data and the rule you think the device should be hitting?

0 Helpful

lowfell
Level 3
Level 3
In response to paul

‎07-08-2020 12:30 AM

Hello.

 

I have seen the affected mac addresses PASS authentication

The device IS in the correct groups

 

Then Later the SAME device will FAIL authentication?

If you then go int to the Authorization Profile when you look at the fail, the device is no longer in the Profile groups.

 

This is happening randomly and affecting multiple devices. I've actually opened a TAC case now and i'm awaiting assistance. 

 

0 Helpful

hslai
Cisco Employee
Cisco Employee
In response to lowfell

‎07-11-2020 01:12 PM

lowfell,

Yes, you are doing it correctly by engaging Cisco TAC support.

If possible, try establishing a pattern. Otherwise, we would need debug logs for extensive time intervals, try to catch it when it happens again and then analyze the files.

0 Helpful
Customers Also Viewed These Support Documents