Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation

Who Me Too'd this topic

Cisco 2960X with dot1x - %PM-3-INTERNALERROR: Port Manager Internal Software Error (!pm_vtpvlan_bitlist_test(&pd->operInfo.trunkVlans, vlan):

rrsstefano
Level 1
Level 1

‎08-31-2017 06:24 AM - edited ‎03-08-2019 11:54 AM

Hi all,

 

I want to ask community for a suggestion regarding a potential problem noted on a stack of 2960x with

Cisco IP Phones and PCs connected behind phones

 

Some customers informed us that, sporadically , the PC behind phone is not able to authenticate itself through dot1x while the ip phone is correctly authenticated.

The solution seems to unplug/plug again the ip phone; during automatical retries to authenticate apper on switch logs messages like this :

 

Aug 31 07:34:06.341: %DOT1X-5-FAIL: Authentication failed for client (b4b5.2fc2.a09b) on Interface Gi2/0/4 AuditSessionID 0A47F045000001121F45FED3
Aug 31 07:34:06.509: %MAB-5-FAIL: Authentication failed for client (b4b5.2fc2.a09b) on Interface Gi2/0/4 AuditSessionID 0A47F045000001121F45FED3
Aug 31 07:35:09.785: %DOT1X-5-FAIL: Authentication failed for client (b4b5.2fc2.a09b) on Interface Gi2/0/4 AuditSessionID 0A47F045000001131F46F6A9
Aug 31 07:35:09.946: %MAB-5-FAIL: Authentication failed for client (b4b5.2fc2.a09b) on Interface Gi2/0/4 AuditSessionID 0A47F045000001131F46F6A9
Aug 31 07:35:45.741: %DOT1X-5-FAIL: Authentication failed for client (b4b5.2fc2.a09b) on Interface Gi2/0/4 AuditSessionID 0A47F045000001131F46F6A9
Aug 31 07:36:09.523: %PM-3-INTERNALERROR: Port Manager Internal Software Error (!pm_vtpvlan_bitlist_test(&pd->operInfo.trunkVlans, vlan): ../switch/pm/pm_vlan.c: 1749: pm_vlan_add_port)
-Traceback= 555EECz 2ADAFB0z 2B57C00z 2B1E328z 2553144z 256176Cz 2561A78z 2561F74z 2563838z 2580168z 2581D40z 18A1FD0z 18804C0z 18847C8z 1EA0558z 1884734z

 

In normal condition we see :

 

#show mac address-table interface gigabitEthernet 2/0/4
          Mac Address Table
-------------------------------------------

Vlan    Mac Address       Type        Ports
----    -----------       --------    -----
 102    b4b5.2fc2.a09b    STATIC      Gi2/0/4
 202    f866.f2f6.dc37    STATIC      Gi2/0/4
Total Mac Addresses for this criterion: 2

 

where

 

vlan 102 : data vlan

vlan 202 : voice vlan

 

interface GigabitEthernet2/0/4
 description verso presa Lan Telefono IP + PC
 switchport access vlan 102
 switchport mode access
 switchport voice vlan 202
 srr-queue bandwidth share 10 10 20 60
 queue-set 2
 priority-queue out
 authentication control-direction in
 authentication event fail action authorize vlan 999
 authentication event server dead action authorize vlan 102
 authentication event server dead action authorize voice
 authentication event no-response action authorize vlan 999
 authentication event server alive action reinitialize
 authentication host-mode multi-domain
 authentication port-control auto
 authentication periodic
 authentication timer reauthenticate server
 mab
 mls qos trust device cisco-phone
 mls qos trust cos
 dot1x pae authenticator
 dot1x timeout tx-period 3
 spanning-tree portfast
 spanning-tree bpduguard enable
 service-policy input PC-SoftPhone+HardPhone
end

 

Release running on switch stack is :

 

Switch Ports Model                     SW Version            SW Image                
------ ----- -----                     ----------            ----------              
*    1 52    WS-C2960X-48LPD-L         15.2(2)E6             C2960X-UNIVERSALK9-M    
     2 52    WS-C2960X-48LPD-L         15.2(2)E6             C2960X-UNIVERSALK9-M    

 

Have you some similar experience regarding thie behaviour?

 

Thanks to all !!

 

1 person had this problem
Labels:
0 Helpful
Who Me Too'd this topic