Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

Authentication falure 5440, ISE


Trying to authenticate Windows Vista computers with machine certificate and EAP-TLS on the wired network. Sometimes one or two computers fail the authentication when it boot and it is not allways the same computers. On the wireless network everything works fine.

The certificate has enrolled to the computers and a GPO is puched out with the 802.1x settings.

The switch it connects to is a 3560v2 running 15.0(2)SE4.

In the ISE loggs it looks like the computers try to authenticate with it's hostname and not certificate. I see this error: 5440 Endpoint abandoned EAP session and started new.

And in the log it say:

11507Extracted EAP-Response/Identity
12500Prepared EAP-Request proposing EAP-TLS with challenge
12625Valid EAP-Key-Name attribute received
11006Returned RADIUS Access-Challenge
11001Received RADIUS Access-Request
11018RADIUS is re-using an existing session
12301Extracted EAP-Response/NAK requesting to use PEAP instead
12300Prepared EAP-Request proposing PEAP with challenge

In the Windows error log I see. Event ID 15514 The authentication failed because there is a problem with the user account.

I have now set Max Authentication Falures to 3 in windows but it does not solve the problem, only works around it some times.

Has anyone seen these behavior? What has your solution been?


Authentication falure 5440, ISE

Please refer , for similiar issue