01-13-2023 05:45 AM
Hello,
We used ARUBA CPPM as NAC authentication for our Cisco switches (9200, 2960) but we have an issue that some users get err-disabled after a while as the below log:
10638546: Jan 11 08:04:26: %AUTHMGR-5-SECURITY_VIOLATION: Security violation on the interface FastEthernet0/28, new MAC address (0001.b18f.3a65) is seen.AuditSessionID Unassigned
10638547: Jan 11 08:04:26: %PM-4-ERR_DISABLE: security-violation error detected on Fa0/28, putting Fa0/28 in err-disable state
Any help please
Thanks
01-13-2023 06:37 AM
Hi,
There appears to be a security violation at that port. Make sure there is no switch or hub with multiple devices connected to port 0/28.
HTH
01-15-2023 10:29 PM
Hi Reza,
Thank you for your reply
The port connected to Cisco phone and the PC connected to the Phone.
Thanks
01-16-2023 01:03 AM
Hello,
can you post the configuration of one of the ports that generates the error ?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide