After configured Policy authentication and authorization on the Cisco ISE 2.3. we noticed that during the test, there are some machines which are undetectable on the server. On the switch when I run the command
show authentication session int gX/Y
we saw that dot1x authentication failed but MAB authentication keep on running. Also MAC and IP address of these endpoints are unknown. The endpoint get the IP address but on the server there is nothing. How can we solve this issue ?
Solved! Go to Solution.
Endpoints might get stuck in "Running" state with "UNKNOWN" MAC, if the port is up, but there is no MAC address. If you do see MAC on the port, check your IOS version. I had problems with 12.2(55)SE9 version on the old 3560s and also the early versions of 15.0(2) on 2960x. Upgrading to the later release solved the issues.
We change the switch test to other one but It is still the same thing I face.
Now we use WS-c2960-X with IOS 15.2(2)E6 and the image version is C2960X-UNIVERSALK9-M