Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

ISE internal user authentication failure - user not found

Hi Forumers'

I trying to do wireless 802.1x, where identity store using intenral user.

But i found this error message when i trying to connect

Authentication failed                                                                                 :

22056 Subject not found in the applicable identity store(s)

My authrorization rules is built like this

identity groups = user identities group / " mygroup"

condition = no setting

permissions = standard / PermitAccess

Question 1

Any troubleshooting step to do on this?

Question 2

For the Authorization rules, what's the condition should set for using Internal User as Identity store?

Thanks

Noel

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

ISE internal user authentication failure - user not found

The error is caused to an authentication failure and is not an issue with authorization

You need to look at your authentications policy (Policy->Authentications) and see which identity store was authenticated against

In addition can do the Live Authentications page (Monitor->Authentications) and for the failing record click on the icon under details. This will give you the full details of the requets processing and you can see which rule was matched in the identity policy (Identity Policy Matched Rule) and "Selected Identity Stores".

1 REPLY
Cisco Employee

ISE internal user authentication failure - user not found

The error is caused to an authentication failure and is not an issue with authorization

You need to look at your authentications policy (Policy->Authentications) and see which identity store was authenticated against

In addition can do the Live Authentications page (Monitor->Authentications) and for the failing record click on the icon under details. This will give you the full details of the requets processing and you can see which rule was matched in the identity policy (Identity Policy Matched Rule) and "Selected Identity Stores".

2733
Views
0
Helpful
1
Replies