Re: Randon Authentication fails on ISE

lowfell · ‎07-06-2020

Random authentication fails. Ssers will generally authnticate but randomly don't . affecting various users all random.

5400 Authentication failed

15039 Rejected Per authorization Profile

The Authorization profile though has never changed.

They are on version Ise version 2.4.0357 patch 10

paul · ‎07-06-2020

The step data in the details of the failure should tell you what is happening. Can you post the step data and the rule you think the device should be hitting?

lowfell · ‎07-08-2020

Hello.

I have seen the affected mac addresses PASS authentication

The device IS in the correct groups

Then Later the SAME device will FAIL authentication?

If you then go int to the Authorization Profile when you look at the fail, the device is no longer in the Profile groups.

This is happening randomly and affecting multiple devices. I've actually opened a TAC case now and i'm awaiting assistance.

hslai · ‎07-11-2020

lowfell,

Yes, you are doing it correctly by engaging Cisco TAC support.

If possible, try establishing a pattern. Otherwise, we would need debug logs for extensive time intervals, try to catch it when it happens again and then analyze the files.

Random Authentication fails on ISE