Guest

Preview Tool

Cisco Bug: CSCuw38748 - Crash after %AUTHMGR-7-FAILOVER: Failing over from 'dot1x' occurs

Last Modified

Jun 19, 2018

Products (175)

  • Cisco IOS
  • Cisco Catalyst 3560E-48PD-E Switch
  • Cisco Catalyst 2960C-8TC-S Switch
  • Cisco Catalyst 3560G-48PS Switch
  • Cisco Catalyst 3560E-24TD-S Switch
  • Cisco Catalyst 2960S-24PD-L Switch
  • Cisco Catalyst 3560-12PC-S Compact Switch
  • Cisco Catalyst 2960S-F48FPS-L Switch
  • Cisco Catalyst 3750V2-24PS Switch
  • Cisco Catalyst 3560E-48PD-SF Switch
View all products in Bug Search Tool Login Required

Known Affected Releases

15.0(2)SE5

Description (partial)

Symptom:
A crash is seen afterAUTHMGR failover event and after server dead events:

003737: Sep  7 11:46:20.857 UTC: %AUTHMGR-7-FAILOVER: Failing over from 'dot1x' for client (0007.3bcf.9fe7) on Interface Fa2/0/42 AuditSessionID AC1C30050000142A00113A36
003738: Sep  7 11:46:20.857 UTC: %AUTHMGR-5-START: Starting 'mab' for client (xxxx.xxxx.xxxx) on Interface Fa2/0/42 AuditSessionID AC1C30050000142A00113A36
003739: Sep  7 11:46:20.891 UTC: %MAB-5-FAIL: Authentication failed for client (xxxx.xxxx.xxxx) on Interface Fa2/0/42 AuditSessionID AC1C30050000142A00113A36
003740: Sep  7 11:46:20.891 UTC: %MAB-5-FAIL: Authentication failed for client (xxxx.xxxx.xxxx on Interface Fa2/0/42 AuditSessionID AC1C30050000142A00113A36
003741: Sep  7 11:46:20.949 UTC: %AUTHMGR-7-RESULT: Authentication result 'server dead' from 'mab' for client (0007.3bcf.9fe7) on Interface Fa2/0/42 AuditSessionID AC1C30050000142A00113A36
003742: Sep  7 11:46:20.949 UTC: %AUTHMGR-5-VLANASSIGN: VLAN 10 assigned to Interface Fa2/0/42 AuditSessionID Unassigned

=== Start of Crashinfo Collection (11:46:21 UTC Mon Sep 7 2015) ===

Conditions:
This issue seems to occur server failures lead to dot1.x failing over. Dot1x failover configs are need to do this. For example:

 authentication event fail action next-method
 authentication event server dead action reinitialize vlan 10
 authentication event server dead action authorize voice
 authentication event server alive action reinitialize
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.