Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

5440 Endpoint abandoned EAP session and started new

We have an ISE deployment for testing.

This is running v1.2.0.899.

We have an auth policy configured for domain-joined computers for 802.1x and domain credentials:

 

     Condition: Wired_802.1X

     Allow Protocols: PEAP_CHAPv2

     Use: AD

 

This works, and authenticates both the machine (pre-login) and user (post-login).

 

However, I am seeing some errors int the Auth logs before the 5200 Authentication succeeded message.

 

These messages are not shown in the Cisco ISE Log Messages spreadsheet!

 

    5441 Endpoint started new EAP session while the packet of previous EAP session is being processed. Dropping new session.

    5405 RADIUS Request dropped

    5440 Endpoint abandoned EAP session and started new

4 REPLIES
Cisco Employee

check the following linkhttps

check the following link

https://supportforums.cisco.com/discussion/12303621/5440-endpoint-abandoned-eap-session-and-started-new#comment-form

New Member

I am seeing this error when a

I am seeing this error when a windows supplicant is booting up, we want them to use EAP-TLS. Before the GPOs has struck, they try to authenticate using EAP-PEAP on their own, which they aren't configured to do. Shortly after that, they send the EAP-TLS packets. After the supplicant has been authenticated, the 5440 error shows up but without affecting the authentication.

My guess is that this is the result of Windows behaviour. This generates a couple of "failed" authentications that in our case just confuse the costumer. I know this isn't an answer on your question, just my experience with the problem.

Possibly a Bug

Possibly a Bug CSCui21439

Known fixes on below release,

1.2(1.198)
1.2(0.903)
New Member

cciesec333,Were you able to

cciesec333,

Were you able to correct this problem? We are experiencing the same problems.
 

1536
Views
0
Helpful
4
Replies
CreatePlease login to create content