Guest

Preview Tool

Cisco Bug: CSCus39207 - AAA override fail Error in activating feature (EPM VLAN GROUP ASSIGNMENT

Last Modified

May 21, 2018

Products (1)

  • Cisco 5700 Series Wireless LAN Controllers

Known Affected Releases

10.1(150.0)

Description (partial)

Symptom:
Clients stuck in "APPLYINGPOLICY" state when completing AAA override with Microsoft NPS 2008 R2.

When a client trace is taken, you can see:-

[12/23/14 15:22:31.402 GMT 2b76 8562] 74e5.430c.10f1 Received response for _EPM_SPI_ACTIVATE_FEATURES request sent for client
[12/23/14 15:22:31.402 GMT 2b77 8562] 74e5.430c.10f1 Received _EPM_SPI_STATUS_FAILURE for request sent for client

debug epm all:-

Dec 24 10:53:04.157: EPM_SESS_EVENT: Attribute tunnel-preference is added to feat EPM VLAN GROUP ASSIGNMENT  list
Dec 24 10:53:04.158: EPM_SESS_EVENT: Found registered feature for attribute class
Dec 24 10:53:04.158: EPM_SESS_EVENT: Attribute class is added to feat SM ACCOUNTING PLUG-IN  list
Dec 24 10:53:04.158: EPM_SESS_ERR: No Feature has been registered for attribute MS-CHAP-V2-Success
Dec 24 10:53:04.158: EPM_SESS_ERR: No Feature has been registered for attribute MS-MPPE-Send-Key
Dec 24 10:53:04.158: EPM_SESS_ERR: No Feature has been registered for attribute MS-MPPE-Recv-Key
Dec 24 10:53:04.158: EPM_SESS_ERR: No Feature has been registered for attribute username
Dec 24 10:53:04.158: EPM_SESS_EVENT: No local DB attributes present
Dec 24 10:53:04.158: EPM_SESS_EVENT: Local IDB info already exists for Capwap0
Dec 24 10:53:04.158: EPM_SESS_EVENT: Non-local-attr Authz session info [0x1B0000DF] successfully inserted into interface Capwap0
Dec 24 10:53:04.158: EPM_SESS_ERR: Error in activating feature (EPM VLAN GROUP ASSIGNMENT)

Conditions:
NGWC performing dot1x using AAA override with Microsoft 2008 R2.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.