debug radiuson the switch for that authenication connection.
- Attached txt file - radius_debug.txt
- the specific port configuration
interface GigabitEthernet0/5
switchport access vlan 19
switchport mode access
ip access-group temp in
authentication order dot1x mab
authentication priority dot1x mab
authentication port-control auto
authentication periodic
authentication timer reauthenticate server
mab
dot1x pae authenticator
dot1x timeout server-timeout 30
dot1x timeout tx-period 10
dot1x max-req 3
dot1x max-reauth-req 10
spanning-tree portfast
- show authentication sessions for that port/attempt
ord1-dc-NAC#sh authentication sessions int gi0/5
Interface: GigabitEthernet0/5
MAC Address: 5c26.0a6c.9b3c
IP Address: 10.145.10.150
User-Name: host/JGOULD-TEST.aspect.com
Status: Authz Failed
Domain: DATA
Security Policy: Should Secure
Security Status: Unsecure
Oper host mode: single-host
Oper control dir: both
Authorized By: Authentication Server
Vlan Policy: N/A
Session timeout: 10800s (server), Remaining: 10758s
Timeout action: Reauthenticate
Idle timeout: N/A
Common Session ID: 0A9119080000014C1DA43B4F
Acct Session ID: 0x0000016F
Handle: 0xA000014D
Runnable methods list:
Method State
dot1x Authc Success
mab Not run
Adding as attachements as well.