Preview Tool

Cisco Bug: CSCuq75936 - 4500 SUP 8E port goes to unauthorized for certain DACL lengths

Last Modified

Nov 27, 2020

Products (2)

  • Cisco 2600 Series Multiservice Platforms
  • Cisco 2600 Series Multiservice Platforms

Known Affected Releases


Description (partial)

Port goes into unauthorized state when DACLs of a certain length are pushed to the 4500 as a result of successful client authentication.

A standard numbered ACL is defined on the 4500 with (the length of the name of the DACL pushed from ISE) as the number.
For example:
If the DACL being pushed is xACSACLx-IP-ABCD1234-aabbccdd, and there is a numbered ACL with the number 29 on the switch "access-list 29 permit host", then this DACL will trigger the port to go into the unauthorized state.
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.