Guest

Preview Tool

Cisco Bug: CSCvs97434 - LDAP Login failure with AAA DAEMON crash, signal 11 with system switchover

Last Modified

May 30, 2020

Products (1)

  • Cisco MDS 9000 Series Multilayer Switches

Known Affected Releases

8.2(1)

Description (partial)

Symptom:
LDAP authentication failure with regular usage

NVRAM Logs
%KERN-2-SYSTEM_MSG: [25942244.537896] Switchover started by redundancy driver - kernel
%SYSMGR-2-HASWITCHOVER_PRE_START: This supervisor is becoming active (pre-start phase).
%SYSMGR-2-HASWITCHOVER_START: Supervisor 10 is becoming active.
%SYSMGR-2-SWITCHOVER_OVER: Switchover completed.

%SYSMGR-2-SERVICE_CRASHED: Service "AAA Daemon" (PID 4488) hasn't caught signal 11 (core will be saved).
%SYSMGR-2-SERVICE_CRASHED: Service "AAA Daemon" (PID 4827) hasn't caught signal 11 (core will be saved).

reset reason
----- reset reason for module 9 (from Supervisor in slot 9) ---
1) At 118482 usecs after Thu Feb  6 06:15:54 2020
    Reason: Reset triggered due to HA policy of Reset
    Service: AAA Daemon hap reset
    Version: 8.2(1)

(config-if)# dir logflash://sup-2/core
    1105052    Feb 05 05:33:38 2020  1580880818_0xa01_aaa_log.4488.tar.gz
    1085122    Feb 05 05:46:18 2020  1580881578_0xa01_aaa_log.4827.tar.gz
    1138862    Feb 05 06:34:20 2020  1580884460_0xa01_non-sysmgr_log.9337.tar.gz
    1203035    Feb 05 11:15:00 2020  1580901299_0xa01_aaa_log.5910.tar.gz
    1076185    Feb 06 06:21:18 2020  1580970078_0x901_aaa_log.26768.tar.gz
    1096281    Feb 06 06:21:19 2020  1580970079_0x901_aaa_log.4440.tar.gz


# show core
Module  Instance  Process-name     PID       Date(Year-Month-Day Time)
------  --------  ---------------  --------  -------------------------
10      1         aaa              4488      2020-02-05 05:33:37
10      1         aaa              4827      2020-02-05 05:46:16
10      1         non-sysmgr       9337      2020-02-05 06:34:19

(config-if)# test aaa group LDAP-Servers bhadaurk_sto 
2020 Feb  5 11:14:52 LDNCISSW05 %SYSMGR-2-SERVICE_CRASHED: Service "AAA Daemon" (PID 5910) hasn't caught signal 11 (core will be saved).
Problem in validating the group

Testing AAA will again do a switchover

Conditions:
DS-C9718
Version: 8.2(1)

Regular usage, no bulk request
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.