Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
283
Views
0
Helpful
1
Replies

ISE Authentication Fail on Cisco 3560 Switch

Mehmet Can
Level 1
Level 1

‎02-02-2017 06:28 AM - edited ‎03-08-2019 09:09 AM

Hello All,

We have Cisco 3650 Switch and using MPLS VPN. Cisco ISE on another site. Switch and ISE communicating with MPLS VPN Line.

My problem: when vpn router is down(line problem, electrical problem or router restart) all client get an Authentication Fail that's ok. But after vpn router is up (vpn line is ok) still get an errors Authtentication Fail. I need to restart the switch for resolve problem and all client Authentication Success after switch restart.

I tried IOS upgrade with suggest version but still same problem.

Console outputs at attachment.

Do you have any idea for my problem?

Labels:
Preview file
313 KB
0 Helpful
1 Reply 1

andrewswanson
Level 7
Level 7

‎02-02-2017 11:21 AM

perhaps when the vpn link goes down the switch RADIUS servers are being marked as dead.

try modifying your radius deadtime from 60 minutes to 5:

radius-server deadtime 5

hth
Andy

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card