Guest

Preview Tool

Cisco Bug: CSCup75697 - Agent in discovery loop for 30 retries (previously connected ISE/CAS)

Last Modified

Nov 13, 2016

Products (1)

  • Cisco NAC Appliance (Clean Access)

Known Affected Releases

4.9(4.3)

Description (partial)

Symptom:
Nac agent does not immediately pop up when the user connects to VPN.
This behavior could also be observed while switching between wired & wireless interfaces if the DH and DG failed and agent is trying discovery via previously connected CAS IP

Conditions:
Mixed deployment of CAS and ISE. Discovery via DH & DG fails and previously connected device is CAS IP.
If the previously connected device is ISE, then DNS resolution for FQDN will fail. Hence agent would complete the 30 retry loop within a sec. If the previously connected device is a CAS, then IP is sometimes stored as old CAS. In those cases agent takes anywhere between 5min to 15min to complete the retry loop.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.