5440 Endpoint abandoned EAP session and started new

We have an ISE deployment for testing.
This is running v1.2.0.899.
We have an auth policy configured for domain-joined computers for 802.1x and domain credentials:
     Condition: Wired_802.1X
     Allow Protocols: PEAP_CHAPv2
     Use: AD
This works, and authenticates both the machine (pre-login) and user (post-login).
However, I am seeing some errors int the Auth logs before the 5200 Authentication succeeded message.
These messages are not shown in the Cisco ISE Log Messages spreadsheet!
    5441 Endpoint started new EAP session while the packet of previous EAP session is being processed. Dropping new session.
    5405 RADIUS Request dropped
    5440 Endpoint abandoned EAP session and started new

I am seeing this error when a windows supplicant is booting up, we want them to use EAP-TLS. Before the GPOs has struck, they try to authenticate using EAP-PEAP on their own, which they aren't configured to do. Shortly after that, they send the EAP-TLS packets. After the supplicant has been authenticated, the 5440 error shows up but without affecting the authentication.
My guess is that this is the result of Windows behaviour. This generates a couple of "failed" authentications that in our case just confuse the costumer. I know this isn't an answer on your question, just my experience with the problem.

Similar Messages

  • ISE v1.2 - Endpoint abandoned EAP session and started new

    Hi.
    I have lots of clients that are not able to log on to both wired and wireless networks, and they always fails with these errors.
    5411 Supplicant stopped responding to ISE
    5440 Endpoint abandoned EAP session and started new
    This is with certificate authentication, both for client and for machine.
    The clients are for the most part Windows 7.
    We use both Cisco and Aerohive for wireless, and the switch I have tested with is a Cisco2960S
    A few strange things:
    It works perfectly for a lot of clients too, with the excact same configuration.
    One PC I'm testing with works fine when authenticating via wireless, but when I plug it into the switch, I get these errors.
    I seems to be a timeout of some kind, either to short or too long, but where?
    In the Win7 supplicant?
    In the switch?
    In the Cisco WLC
    or in the Aerohive AP?
    I have spent hours and hours on this problem, but I can't make it go away, it is very exhausting.
    There surely must have been others with the same problem?
    Thank you.

    Thank for trying to help out, but this is.. insanely vague.
    How can i verify that NAS (the C2960S) is properly configured?
    What timers are we talking about here? There are many to choose from..
    The problem is still here, even with the latest patch 7 for ISE 1.2. It works fine on wireless, but not with wired, from the same computer. So it is logic to assume it has something to do with the switch.
    This is the configuration from the switch:
    interface GigabitEthernet1/0/20
      switchport mode access
     authentication event fail action next-method
     authentication open
     authentication order dot1x mab
     authentication port-control auto
     snmp trap mac-notification change added
     dot1x pae authenticator
     spanning-tree portfast
    end
    sh dot1x int g1/0/20
    Dot1x Info for GigabitEthernet1/0/20
    PAE                       = AUTHENTICATOR
    QuietPeriod               = 60
    ServerTimeout             = 0
    SuppTimeout               = 30
    ReAuthMax                 = 2
    MaxReq                    = 2
    TxPeriod                  = 30
    sh run aaa
    aaa authentication login default group radius local
    aaa authentication dot1x default group radius
    aaa authorization exec default group radius local
    aaa authorization network default group radius
    aaa accounting dot1x default start-stop group radius!
    aaa server radius dynamic-author
     client 192.168.100.85
     server-key nope!
     auth-type any
    radius server hmz
     address ipv4 192.168.100.85 auth-port 1812 acct-port 1813
     key nope!
    radius-server attribute 6 on-for-login-auth
    radius-server attribute 6 support-multiple
    radius-server attribute 8 include-in-access-req
    aaa new-model
    aaa session-id common
    Some debug from the switch:
    Apr  6 11:07:01.745: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] Create attr list, session 0x1E0000E0:
    Apr  6 11:07:01.745: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] - adding MAC d43d.7e97.1e26
    Apr  6 11:07:01.745: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] - adding Swidb 0x4F8BAC8
    Apr  6 11:07:01.745: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] - adding AAA_ID=14B
    Apr  6 11:07:01.745: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] - adding Audit_sid=C0A864FA0000014B6983A2E0
    Apr  6 11:07:01.745: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] - adding Domain=DATA (1)
    Apr  6 11:07:01.745: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] - adding [email protected]
    Apr  6 11:07:01.745: %AUTHMGR-5-START: Starting 'dot1x' for client (d43d.7e97.1e26) on Interface Gi1/0/20 AuditSessionID C0A864FA0000014B6983A2E0
    Apr  6 11:07:01.745: AUTH-DETAIL: No default action(s) for event RX_METHOD_AGENT_FOUND.
    Apr  6 11:08:21.182: %DOT1X-5-FAIL: Authentication failed for client (d43d.7e97.1e26) on Interface Gi1/0/20 AuditSessionID C0A864FA0000014B6983A2E0
    Apr  6 11:08:21.187: %AUTHMGR-7-STOPPING: Stopping 'dot1x' for client d43d.7e97.1e26 on Interface Gi1/0/20 AuditSessionID C0A864FA0000014B6983A2E0
    Apr  6 11:08:21.187: %AUTHMGR-5-FAIL: Authorization failed or unapplied for client (d43d.7e97.1e26) on Interface Gi1/0/20 AuditSessionID C0A864FA0000014B6983A2E0
    Apr  6 11:08:21.187: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] Create attr list, session 0x1E0000E0:
    Apr  6 11:08:21.187: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] - adding MAC d43d.7e97.1e26
    Apr  6 11:08:21.187: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] - adding Swidb 0x4F8BAC8
    Apr  6 11:08:21.187: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] - adding AAA_ID=14B
    Apr  6 11:08:21.187: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] - adding Audit_sid=C0A864FA0000014B6983A2E0
    Apr  6 11:08:21.187: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] - adding Domain=DATA (1)
    Apr  6 11:08:21.187: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] - adding Username=host/HovedPC.gaasdal.net
    Apr  6 11:09:22.079: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] Create attr list, session 0x1E0000E0:
    Apr  6 11:09:22.079: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] - adding MAC d43d.7e97.1e26
    Apr  6 11:09:22.079: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] - adding Swidb 0x4F8BAC8
    Apr  6 11:09:22.079: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] - adding AAA_ID=14B
    Apr  6 11:09:22.079: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] - adding Audit_sid=C0A864FA0000014B6983A2E0
    Apr  6 11:09:22.079: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] - adding Domain=DATA (1)
    Apr  6 11:09:22.079: AUTH-DETAIL: [d43d.7e97.1e26, Gi1/0/20] - adding Username=host/HovedPC.gaasdal.net
    Apr  6 11:09:22.079: %AUTHMGR-5-START: Starting 'dot1x' for client (d43d.7e97.1e26) on Interface Gi1/0/20 AuditSessionID C0A864FA0000014B6983A2E0
    Apr  6 11:09:22.079: AUTH-DETAIL: No default action(s) for event SESSION_STARTED.

  • After typing master password in session can I force typing master password again without ending current session and starting new session?

    Sometimes after using the master password to access an account during a given firefox session I would like to "revoke" this ability for automatic access (i.e. require typing the master password again) without having to end the current session and restart firefox.
    While it is nice to only have to type the master password once per session, there are times when after starting some action I would like to leave the browser unattended for a short time but prevent others from accessing sensitive information at other sites if they do not know my master password. Note this is not the same as "locking the browser." Presently the only way I know to force this is to kill the current session and restart the browser but this is not very satisfactory if I actually want to stay connected (authorized) at a particular site. I would hope that adding a button on the security tab to "require master password for current session" would be a simple fix to implement? Thank you for your attention.

    While waiting for a response to this question, I stumbled upon a partial (good workaround) answer to my question in the form of a Firefox addon, Master Password Timeout [https://addons.mozilla.org/en-US/firefox/addon/master-password-timeout/ ]. Among other things it adds "Logout Master Password" as an option under the Firefox "Tools" menu which then gives the functionality I was looking for.
    It seems to me though that this is a basic security option that would be good for a general Firefox user to be aware of since leaving a browser open unattended with no master password required could easily lead to trouble. Before finding this addon I was not aware that Firefox 4 had a 30 minute default timeout for the master password. At least in my case I have left Firefox going overnight on home computers and have not had to retype the master password the next morning... so somehow I missed having this "default" set when I upgraded to Firefox 4.

  • I have an ipod touch 8gb model number MA623LL. How do I install apps on my ipod? Is it capable of transferring/running apps? Why doesn't my ipod touch have the basic-beginning app on the beginning screen after i erased/wiped my ipod and started new?

    i have an ipod touch 8gb model number MA623LL. How do I install apps on my ipod? Is it capable of transferring/running apps? Why doesn't my ipod touch have the basic-beginning app on the beginning screen after i erased/wiped my ipod and started new?

    Googling shows that you have the 1G iPod.  For apps you need at least iOS 2. The iG can go as far os 3.1.3 that you get here:
    Purchasing iOS 3.1 Software Update for iPod touch (1st generation)
    Just be aware that there are presently not that many apps that work with a 1G with iOS 3.1.3

  • I want to reset my computer to close everything and start new

    i have a mactinosh g5 and i have the mb427z/a. i want to reset it and start with new everything but i dont know how to so please help me

    Throw away any files which may contain sensitive data, securely empty the Trash, insert its original disk, restart the computer with the C key held down, use the Disk Utility to erase the partition with Mac OS X installed, and install a fresh OS onto it.
    If you're going to sell or give away the computer, include the disk with it.
    (106763)

  • Creating a session and a new variable in the session

    Hi
    my problem is i create a new session ok then i try to allocate a new session varible but it wont work i think it is something to do with scope but i cannot work it our anyone can you help.
    the variable is
    currentName = request.getParameter("currentName");
    session = pageContext.getSession();
    session.setAttribute ("sessionName", new String (currrentName));%>
    <%@ page language="Java" import="java.util.*,pizza.*" %>
    <%@ include file="NoCache.jsp"%>
    <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN"
    "http://www.w3.org/TR/html4/strict.dtd">
    <html>
    <head>
    <title>Pizza Club Mian Page</title>
    </head>
    <body>
    <CENTER><P><H1>Pizza Club Main Page</H1></P></CENTER>
    <jsp:include page="navigation.jsp" />
    <%
    //Process
    List pizzaList = (ArrayList)application.getAttribute("myPizzaList");
    if (pizzaList == null) {%>
    <Blockquote></Blockquote>
    <Blockquote></Blockquote>
         <center><blockquote><b>Hello you need to register your first order on the New Member page thanks</b></blockquote></center>
         <Blockquote></Blockquote>
    <Blockquote></Blockquote>
    <%} else {
    %>
    <center>
    <form method="POST" action="<%pageContext.getPage();%>">
    <p>
    </p>
    <table width="400" height="80" border="1">
    <tr>
    <td>Please input your Name to sign in</td>
    <td><input name="currentName" type="text" value=""> </td>
    </tr>
    <td> </td>
    <td><input type="submit" name="submit" value="Submit" /> </td>
    </tr>
    </table>
    <p>  </p>
    </form>
    </center>
    <%
    if(request.getMethod().equals("POST")){
    if (request.getParameter("currentName").equals("")){
    out.print("you didnt enter a Name please enter a Name");%>
    <br><blockquote></blockquote>
    <%=request.getParameter("currentName")%>
    <%} else {
    THIS IS THE SECTION HERE
    String currentName = request.getParameter("currentName");
    Iterator litr = pizzaList.iterator();
    while(litr.hasNext()){
    PizzaEater nextPizzaEater = (PizzaEater)litr.next();
    String nextName = nextPizzaEater.getName();
    if(nextName.equals(currentName)){
    currentName = request.getParameter("currentName");
    session = pageContext.getSession();
    session.setAttribute ("sessionName", new String (currrentName));%>
                   <jsp:forward page="/currentMember.jsp" />
    <%}
    }%>

    dont worry i have solved this problem cant spell

  • How can I delete and start new loading my shuffle?

    How can I erase and start all over loading my shuffle?
    Pari

    Restore the iPod Shuffle to factory settings in iTunes using the instructions in this Apple support document.
    http://support.apple.com/kb/ht1481
    B-rock

  • HT1430 Can not get email on Ipad latest version bought december 2012. Turned off . Turned back on, verified mail provider settings.turned off computer mail which works fine.dO i NEED TO DELETE ACCOUNT AND START NEW ONE . wILL i LOOSE PREVIOUS MAIL

    CAN NOT GET MAIL. TURNED OFF IPAD . RESTARTED. VERIFIED PROVIDER SETTINGS. DOES NOT WORK. IF I CANCEL ACCOUNT AND OPEN NEW ONE WILL I LOOSE PREVIOUS MAIL.

    I've removed my yahoo account several times. All it does is delete the info off my iPad and doesn't touch the account itself. So I can go back in, re-add the account and then redownload my mail again. I haven't had to change my passwords or anything.
    You might look on sympatico's site, see if they have any troubleshooting specific to iPads.

  • Clearing HD and start new with Lion

    I have been looking for a simple solution to my problem, but I can't seem to find one.
    My dad just gave me is iMac (3.06 GHZ Core 2 Duo, 8GB Ram) with Lion (10.7.2) but it has a large amount of useless software to me and do not like the setup of his system compared to my MacBook Pro. I know that I can just have my MacBook Pro copy over but I would like to start clean as if I just purchased the computer.
    So my question is, how do I clean the HD and start all over again so it was like I just purchased the computer?
    Cheers,
    Kerry

    Well, if you don't care about the applications or other files on that computer, you can simply start over. However, FWIW, copying the system over from your MBP most likely will not work: Macs cannot boot from an older system than what they came with and, depending on how you aquired your copy of Lion, you may or may not be able to use that. To clarify:
    If your dad bought the Lion license on MAS, he only purchased it for himself - it is not transferable. He is legally required to uninstall Lion and reinstall the original OS. If he forgot to do that, you can do that by using the original OS install disk - boot from it (by holding down C while restarting), choose erase disk from the Utilities, and reinstall the OS. Once updated to 10.6.8, you can go to MAS and get your own license of Lion. If you do not have the original install disk, call Apple and they will send out replacement disks for a nominal charge.
    Now, if you bought your Lion license from the MBP from MAS, you can simply download it again on your MBP and then copy/install it on the iMac. If your MBP came with Lion installed, it cannot be used on another computer, so you will have to purchase it for the iMac.

  • Abandon Old File History and Start New on Different Drive

    On W8 Pro,
    Had an attached USB Drive for File History.
    Needed USB Drive for something else.
    Disconnected it and stopped file history.
    File History says drive is disconnected.
    I want to start is again on a new network drive, but system keeps asking me to reconnect the old one so that it can use history from it to use on the new one. I responded that I do nor want to use the old history.
    Am not able to start File History on New Network Drive.
    The Network Drive is a 4TB Seagate connected to the Router and also used for storing System Imges for this and other computers on the network.
    Is there any way to convince the system that I never had a previous file history, so that I can start a new one ?

    Hi,
    Sometimes,regarding this error,it may be caused by the Indexing Service.
    I think we check Windows Search service to see if it is enable.
    Please Open Control Panel>Administrative Tools>Services>Windows Search and enable it.
    If it doesn't work,please see the error log in the event view and upload here.
    Regards,
    Kelvin hsu
    TechNet Community Support

  • Can't rename my computer and start new TM backup

    Three techs at Apple have not been able to help me.
    I have been backing up a PowerBook G4 and MacBook to a TC wirelessly, and now the MacBook BU stopped working but the PB continues OK. The sparsebundles are different sizes; PB 115 GB, MB 151 GB. After many gyrations with my MB sparsebundle, all unsuccessful, the tech suggested I start fresh with new computer name for my MB (the old name was firstname lastname's computer). So my new computer name is firstnameMacBook. After preparing to do a backup for more than an hour I get the error message "The backup disk image could not be mounted". Same error message I had when my MB BU stopped working. So a name change had no effect. Should I change the name of the existing old sparesbundle? Should I delete it? How? What?
    What to do?
    Bruce

    Sorry. I should have been clearer. I was just wondering if it was ok to do so.
    I had taken my partners computer. Re-installed Leopard, then when I went to do the time machine backup it just started using the original sparse bundle that was technically my partners. I wasn't sure how to get it to start another and wanted to check first if it was ok the rename a sparse bundle?
    For interest sake. I did rename the original bundle and this forced the Macbook to start a new sparse bundle.
    I wanted to keep the original sparse bundle that was my partners in case we had any trouble with my partners new computer set up and migration.
    Hope that all makes sense now.
    Thanks

  • Session and Open new window

    1. I have a problem to access my session variable at second file (null). I was simply the code as below:
    http://abc/test1.jsp
    <%
    session.setAttribute("user", "Test 1");
    %>
    http://abc/sample/test2.jsp
    <%
    String username=(String) session.getAttribute("user");
    out.print(username);
    %>
    2. How do I use jsp /jstl open a new window?

    gohgss wrote:
    1. I have a problem to access my session variable at second file (null). I was simply the code as below:Maybe you're doing something wrong somewhere else. The code looks OK.
    2. How do I use jsp /jstl open a new window?You can't. Use HTML or Javascript instead. The form and anchor tags (<form> and <a>) have a "target" attribute. If you set it to "_blank", then the form or link will be opened in a new window. With JS, just put window.open(url) somewhere in an "on*" attribute, e.g. onclick, onchange, etc.

  • Time Machine does not recognize previous backups in TC and starts new BUps

    Time Machine (TM) seem not recognize previous back ups made in Time Capsule (TC) and begins a new copy of the back up every time, taking a lot of time.
    The Time Capsule has an initial backup copy that I made several weeks ago. Subsequent backups seem to have disappear and the initial back up process is started over every time I make a backup, lasting several hours.
    In the Control Panel of Time Machine, the Time Capsule disk has been selected as the place where the backup should be made.
    The Time Capsule is not mounted in the desktop but can be seen as a Share resource.
    Do you know why this is happening?
    Is there any way that I can use the already existing initial backup in TC as a starting point for subsequent backups?
    Your help will be much appreciated.

    I resolved the problem of getting the computer to recognize that I had the authorization to change file names by myself. For anyone with a similar issue (insufficient authorization), the following are the steps I took to resolve the issue.
    First, click on the external HD icon used for TM and chose "get info". In the info window goto the "Sharing & Permission" section where the +, - , action menu and lock are. Unlock the lock if it is locked. Verify that the Name used for the computer, user or administrator has "read & write" permission. Then go to the Action menu (the icon or design that looks like a sprocket) and choose "apply to enclosed items". In my case the HD went on noisily for a few hours before I decided to Force Quit. I then went back to the file name and changed it back to the way it was prior to my ill fated attempt to back up my other computer on the same HD.
    I hope this will help anyone who has come across a similar issue.

  • HT4137 I am looking to clear my contacts and calendar and start new.  Can that be done?

    Can I clear my contacts and calendar?

    Using a computer's browser, log into icloud.com and go to the contacts and calendar pages and begin deleting.

  • Delete Address Book Contacts and Start New Synchronization

    Yesterday, I discovered that my address has not properly synchronized.
    How do I delete the content of the dotmac account so that I can have a clean start, please?
    Thanks for your help!

    This is the iSync forum, so you'd be better off asking in the *.Mac Sync* forum here:
    http://discussions.apple.com/forum.jspa?forumID=957
    .Mac Support is also available here:
    http://www.apple.com/support/dotmac/

Maybe you are looking for

  • Can I make a calendar in iPhoto '09 using my Aperture 3.0 library?

    I've just doanloaded a trial of Aperture 3 and am generally very impressed. I decided I wanted to make a wall calendar, which is not supported but it says somewhere you can work from your Aperture library from within iPhoto. Is this only supported in

  • Slow ATV when downloading YouTube vids, Podcasts, etc.

    Loved my ATV in version 1. After software update to 2.02 ATV now takes a considerable amount of time to download or view any YouTube video, Video podcasts or rented movies from iTunes. Was wondering if anyone had a solution. Here is what I have done:

  • A12E1 Error on Application Update

    Responded to Adobe's invitation to update my CC apps; process crapped out with this error and directed me to this forum for 'support' I have not seen any helpful response from Adobe staff on the issue. I don't believe that its an 'internet connectivi

  • Error when running redis-benchmark

    I'm receiving a consistently reproducible error when running redis-benchmark against a new B1 instance of Redis cache. Ran redis-benchmark both from local machine, and an Azure VM. Create B1 instance of Redis cache (2.8) Download redis-benchmark.exe

  • Exception Outside Of EJB Code

    Hello, I have a BMP EJB module that is talking with a SYBASE database using the jconn2 driver on the J2EE AS (Sun Java App Server 8). I deployed the module using the deploytool. I also have a stand-alone application that has been compiled with the cl