I might be late to the party.
I suspect that this could be caused due to the bug in ISE 2.3/2.4 described in the below link :
A workaround has been defined in the link which is to remove "FALS" under "Enable Multi Shared Secret:String(128)".
Hope that helps
... View more