Белая книга для Cisco Cisco Identity Services Engine Software

*Nov 16 11:45:12.016: EPM_SESS_EVENT: 

started (status 2)
*Nov 16 11:45:12.016: %EPM-6-POLICY_REQ: IP 0.0.0.0| MAC dc7b.94a3.7005| AuditSessionID

0A30276F0000117D52D8816C| EVENT APPLY

*Nov 16 11:45:12.016: %EPM-6-POLICY_APP_SUCCESS: 

Policy Application succeded for Client

[0.0.0.0] MAC [dc7b.94a3.7005] AuditSession ID [0A30276F0000117D52D8816C] for

Here are the debugs for the current scenario. Some outputs are omitted for clarity:

<debug command omitted for clarity>

*Nov 16 03:34:28.670: AUTH-EVENT: [dc7b.94a3.7005, Gi1/0/1] Processing default

action(s) for event SESSION_STARTED for session 0xCC000363.

*Nov 16 03:34:28.679: RADIUS(00000000): 

id 1645/249, len 260

*Nov 16 03:34:28.679: RADIUS:  authenticator CE 06 B0 C4 84 1D 70 82 - B8 66 2F

27 92 73 B7 E7

*Nov 16 03:34:28.679: RADIUS:  

...

*Nov 16 03:34:29.333: RADIUS: 

len 38

...

*Nov 16 03:34:29.335: %MAB-5-FAIL: Authentication failed for client (dc7b.94a3.7005)

on Interface Gi1/0/1 AuditSessionID 0A30276F0000116851173EFE

*Nov 16 03:34:29.336: AUTH-EVENT: 

[dc7b.94a3.7005, Gi1/0/1] Authc failure from MAB (2),

status Cred Fail (1) / event fail (1)

*Nov 16 03:34:29.339: %EPM-6-AAA: 

*Nov 16 03:34:29.340: EPM_SESS_EVENT: Method list used for download is ISE

*Nov 16 03:34:29.340: RADIUS(00000000): 

Send Access-Request to 10.48.66.74:1645 id 1645/250,

len 113

*Nov 16 03:34:29.340: RADIUS:  authenticator B8 37 70 B0 33 F4 F2 FD - E4 C6 36

2A 4D BD 34 30

*Nov 16 03:34:29.341: RADIUS:  NAS-IP-Address      [4]   6   10.48.39.111              

*Nov 16 03:34:29.341: RADIUS:  

*Nov 16 03:34:29.341: RADIUS:  User-Password       [2]   18  *

*Nov 16 03:34:29.341: RADIUS:  Vendor, Cisco       [26]  41  

*Nov 16 03:34:29.341: RADIUS:   

service-template"
*Nov 16 03:34:29.341: RADIUS:  Message-Authenticato[80]  18  

*Nov 16 03:34:29.341: RADIUS:   EF D6 81 F7 5E 03 10 3B 91 EE 36 6E 9D 04

5B F4                     [ ^;6n[]

*Nov 16 03:34:29.341: RADIUS(00000000): Sending a IPv4 Radius Packet

*Nov 16 03:34:29.341: RADIUS(00000000): Started 5 sec timeout

*Nov 16 03:34:29.342: EPM_SESS_EVENT: Received IPv4 Binding [ADD] Notification

[GigabitEthernet1/0/48 000c.29f3.ab14 10.48.39.131 1]

*Nov 16 03:34:29.342: EPM_SESS_EVENT: Received IPv4 Binding [ADD] Notification

[GigabitEthernet1/0/48 0050.5699.5350 10.48.39.211 1]

*Nov 16 03:34:29.867: RADIUS: 

Access-Accept, len 208
*Nov 16 03:34:29.867: RADIUS:  authenticator A3 11 DA 4C 17 7E D3 86 - 06 78

85 5F 84 05 36 0B

*Nov 16 03:34:29.867: RADIUS:  User-Name           [1]   10  "MAB_FAIL"

*Nov 16 03:34:29.867: RADIUS:  State               [24]  40  

*Nov 16 03:34:29.867: RADIUS:   52 65 61 75 74 68 53 65 73 73 69 6F 6E 3A

30 61  [ReauthSession:0a]

*Nov 16 03:34:29.867: RADIUS:   33 30 34 32 34 61 30 30 30 30 31 32 30 44

35 32  [30424a0000120D52]

*Nov 16 03:34:29.867: RADIUS:   38 37 34 38 32 45            [ 87482E]

*Nov 16 03:34:29.867: RADIUS:  Class               [25]  51  

*Nov 16 03:34:29.867: RADIUS:   43 41 43 53 3A 30 61 33 30 34 32 34 61 30

30 30  [CACS:0a30424a000]

*Nov 16 03:34:29.868: RADIUS:   30 31 32 30 44 35 32 38 37 34 38 32 45 3A