Error and Event Log Messages

Similar documents
Symbols. Numerics I N D E X

Monitoring Event Logs

User Management: Configuring User Roles and Local Users

Configuring High Availability (HA)

Monitoring and Troubleshooting Agent Sessions

Cisco NAC Appliance Agents

Viewing System Status, page 404. Backing Up and Restoring a Configuration, page 416. Managing Certificates for Authentication, page 418

Enterprise Manager/Appliance Communication

Installing the Clean Access Manager and Clean Access Server

Introduction. What is Cisco NAC Appliance? CHAPTER

Security Management System SNMP Trap Interface

Configuring the Cisco NAM 2220 Appliance

ForeScout CounterACT. Configuration Guide. Version 1.8

CounterACT Wireless Plugin

Cisco TelePresence VCS Cluster Creation and Maintenance

Cisco TrustSec How-To Guide: Universal Configuration for the Cisco Wireless LAN Controller

Express Setup. System Requirements. Express Setup CHAPTER

Using the Web Graphical User Interface

Vendor: Cisco. Exam Code: Exam Name: Implementing Advanced Cisco Unified Wireless Security (IAUWS) v2.0. Version: Demo

NAC Appliance (Cisco Clean Access) In Band Virtual Gateway for Remote Access VPN Configuration Example

Managing CX Devices in Multiple Device Mode

Configuring Communication Services

Overview. About the Cisco Context-Aware Mobility Solution CHAPTER

Cisco Questions & Answers

New in Release: Secomea Release 8.0. This document shows the changes from release 7.4 to release 8.0. Version: 1.5, 2018

Overview of the Cisco NCS Command-Line Interface

ForeScout CounterACT. Assessment Engine. Configuration Guide. Version 1.0

Infoblox Network Insight Integration with Cisco ACI

Aventail Connect Client with Smart Tunneling

Product Family: Networking Hardware Number: AN-NH-012

Troubleshooting the Network Analysis Module. Netflow Data Export. Web Application CHAPTER

Using the Web Graphical User Interface

exacqvision Enterprise Health Manager User Manual

Networking Guide for Redwood Manager

Symbols INDEX > 12-14

Installing the Cisco Virtual Network Management Center

PAN 802.1x Connector Application Installation Guide

Lab 6.4.2: Challenge Inter-VLAN Routing

Cisco Expressway Cluster Creation and Maintenance

Administering the CAM

Clean Access Server FAQ

User Management: Configuring Auth Servers

Verify Radius Server Connectivity with Test AAA Radius Command

NETWORK SENTRY KNOWN ANOMALIES. Network Sentry /8.2.9 Agent Analytics Rev: G 9/26/2018

Load Balancing Censornet USS Gateway. Deployment Guide v Copyright Loadbalancer.org

See the following screens for showing VPN connection data in graphical or tabular form for the ASA.

Version No. Build Date No./ Release Date. Supported OS Apply to Models New Features/Enhancements. Bugs Fixed/Changes

Getting Started with Your Device Configuration

Release Notes for AutoMesh 7.17(N).0.0

202 Lab Introduction Connecting to the Lab Environment

Enterprise Health Manager User Manual

Release README August 2005

Troubleshooting Cisco ISE

ZENworks 2017 Audit Management Reference. December 2016

Configuring IP Addressing

Forescout. Configuration Guide. Version 4.2

Quick Start Guide for Standalone EAP

Step 3 - How to Configure Basic System Settings

Cisco Exam Implementing Advanced Cisco Unified Wireless Security v2.0 Version: 9.0 [ Total Questions: 206 ]

RU-VPN2 - GlobalProtect Installation for Windows

Alarm and Event Dictionary

Release Notes for Cisco Secure User Registration Tool Release 2.0.7

Monitoring the Mobility Express Network

Seqrite Unified Threat Management

Management Software AT-S79. User s Guide. For use with the AT-GS950/16 and AT-GS950/24 Smart Switches. Version Rev.

Securing Wireless LAN Controllers (WLCs)

Add and Organize Devices

Configuring the System

Ruckus Wireless ZoneFlex (ZoneDirector and ZoneFlex Access Points) Release Notes. October 26, 2012

Gnostice StarDocs On-Premises API Virtual Appliance

Troubleshooting Issues

Setting Up Essentials

Cisco VXC PCoIP Configuration

Troubleshooting. Diagnosing Problems CHAPTER

Frequently Asked Questions About Performance Monitor

Dell SonicWALL Aventail Connect Tunnel User s Guide

Cisco ISE Ports Reference

Configure the Catalyst Express 500 Switch with Cisco Network Assistant

Xcalenets Console Setup Guide. Xcalenets Console Setup Guide (Standalone version)

Cisco Unified Operating System Administration Web Interface for Cisco Emergency Responder

Getting Started. About the ASA for Firepower How the ASA Works with the Firepower 2100

Using the Offline Diagnostic Monitor Menu

Peplink SD Switch User Manual. Published on October 25th, 2018

LDAP/AD v1.0 User Guide

Quick Setup Guide. for Standalone Omada Access Points. EAP110 / EAP115 / EAP225 / EAP245 / EAP320 / EAP330 / EAP115-Wall

Using ANM With Virtual Data Centers

5.4 Release README January 2005

IEEE 802.1X Multiple Authentication

CONFIGURATION MANUAL. English version

Load Balancing Microsoft Remote Desktop Services. Deployment Guide v Copyright Loadbalancer.org

First Aid. For All Mediatrix units. Revision

Chapter 8: Lab B: Configuring a Remote Access VPN Server and Client

Cisco TelePresence Conductor with Cisco Unified Communications Manager

CounterACT 7.0. Quick Installation Guide for a Single Virtual CounterACT Appliance

Getting Started. Getting Started with Your Platform Model. Factory Default Configurations CHAPTER

Moxa Remote Connect Server Software User s Manual

Riverbed Technology, Inc. 199 Fremont Street San Francisco, CA Phone Fax

VMware ESX ESXi and vsphere. Installation Guide

ForeScout Extended Module for ArcSight

Administrator Guide. Find out how to set up and use MyKerio to centralize and unify your Kerio software administration.

Transcription:

APPENDIXA and Event Log Messages Client Messages Login Failed Clean Access Server is not properly configured, please report to your administrator. A login page must be added and present in the system in order for both web login and Agent users to authenticate. If a default login page is not present, Agent users will see this error dialog when attempting login. See also Add Default Login Page, page 5-3. Clean Access Server could not establish a secure connection to the Clean Access Manager at <IP_address> This error message to clients attempting login commonly indicates one of the following issues: The time difference between the CAM and CAS is greater than 5 minutes. Invalid IP address Invalid domain name CAM is unreachable See also Troubleshooting Certificate Issues, page 14-21. Network The request has timed out. [12002] This error indicates a communication issue between the Agent and the CAS. The Agent pops up initially indicating that the Agent is able to reach the CAS and vice versa. However, at some point the communication is lost resulting in the error message. This error can reflect a timing issue after the VLAN has been changed for the user machine in OOB deployments. Increasing the VLAN Change Delay (under OOB Management > Profiles > SNMP Receiver > Advanced Settings) from the 2 second default to 3 or 4 seconds may resolve the issue. A-1

CAM Event Log Messages Appendix A and Event Log Messages Users Cannot Log In During CAS Fallback Recovery Failed to add user to the list During CAS fallback recovery (where the CAS is reconnecting to the CAM), a login dialog appears to users accessing the Cisco NAC Appliance network via the CAS, but they are unable to authenticate and login for approximately 2 minutes. (Until CAS fallback recovery completes, users see a Failed to add user to the list error message when attempting to log in.) For more information on CAS Fallback design and implementation, see the CAS Fallback Policy section of the Cisco NAC Appliance - Clean Access Server Configuration Guide, Release 4.7(5). CAM Event Log Messages Table A-1 describes Clean Access Manager event log messages. You can view the even log in the Clean Access Manager admin console from Monitoring > Event Logs. Table A-1 Event Log Messages (Sheet 1 of 4) <MAC address> added to AP MAC list <MAC address> could not be added to the AP MAC list <MAC address> removed from the MAC list <MAC address> could not be removed from the AP MAC list <Authentication Server Name> added to authentication server list <Authentication Server Name> is already configured in authentication server list Provider name <Authentication Server Name> is already been used by different authentication server <Authentication Server Name> updated to authentication server list <Authentication Server Name> is not a valid authentication server <Authentication Server Name> removed from the authentication server list The access point is successfully added to the access point list. Adding access point to a passthrough list failed; the Clean Access Server might not be connected. Access point removed from the list. Removing the access point from the passthrough list failed; the Clean Access Server might not be connected. Authentication server is added to the list. Authentication server being added is already on the list. Authentication server name already in use; updating authentication server failed. Authentication server updated successfully. Authentication server update failed; not a valid authentication server. Authentication server removed successfully. <User name, MAC, IP> - Logout request IPSec Client user logout request. <User name, MAC, IP> - Logout attempt failed; User logout failed; Clean Access Server is not connected. occurred when trying to automatically add to passthrough list occurred when trying to remove from a passthrough list on authentication server update on authentication server update A-2

Appendix A and Event Log Messages CAM Event Log Messages Table A-1 Event Log Messages (Sheet 2 of 4) Invalid user credentials, <User name, MAC, IP> Invalid authentication provider, <Provider Name> <User name, MAC, IP> <Clean Access Server IP> is inaccessible! Dhcp properties are added Dhcp properties are not added Username and password invalid. User authentication server invalid. Heartbeat between Clean Access Manager and Clean Access Server failed; the Clean Access Server is offline. DHCP properties are published to DHCP server in Clean Access Server. DHCP properties publishing to Clean Access Server failed. Critical error; Clean Access Server should be brought up immediately while publishing DHCP properties to the Clean Access Server Cleared the event log The entire event log has been cleared. Domain authentication server information not available Domain authentication server information not set User login failed; authentication server information not available. User login failed; authentication server information not completely configured. on user login on user login <MAC address> added to MAC list Device MAC address is added to the list. <MAC address> could not be added to the MAC list Device MAC address is not added to the list. <MAC address> is already in the MAC Device MAC address already added to the list. list <MAC address> removed from the MAC Device MAC address is removed from the list. list Updated policy to <Clean Access Server Policy is updated successfully. IP> Could not update policy to <Clean Access Server IP> Policy update to Clean Access Server failed. Could not update policy to all Clean Access Servers, policies will be published whenever connected Unable to ping <User IP>, going to logout user <Username> <Role name> role already exists A global policy is not updated to all Clean Access Servers; some of the servers might be disconnected. Ping manager is logging off user, as the user is not online. Automatic user log off feature.. Not an error, as the policies will be updated when they are connected. Normal user log A role by this name has already been created. <Role Name> role is created successfully The role has been created successfully. Deleting role <Role Name> failed, Clean Access Server <Clean Access Server IP> is not connected Deleting role failed; Clean Access Server is not connected. A-3

CAM Event Log Messages Appendix A and Event Log Messages Table A-1 Event Log Messages (Sheet 3 of 4) Could not connect to <Clean Access Server IP> <Clean Access Server IP> added to Clean Access Manager <Clean Access Server IP> updated in Clean Access Manager <Clean Access Server IP> is not configured in Clean Access Manager <Subnet/Netmask> is already in the SUBNET list <Subnet/Netmask> removed from the SUBNET list Clean Access Server could not be added to the Clean Access Manager administration domain; the Clean Access Server is offline or not reachable by the Clean Access Manager. Clean Access Server is added successfully to the Clean Access Manager administration domain. Clean Access Server is updated successfully. Updating Clean Access Server failed; Clean Access Server information not found in the Clean Access Manager. Subnet has already been added to the subnet list. Subnet is removed from the list successfully. A-4

Appendix A and Event Log Messages CAM Event Log Messages Table A-1 Event Log Messages (Sheet 4 of 4) <IP Number> System Stats Unable to process out-of-band login request from [<MAC address> <IP address>] <username>. Cause: connected device [<MAC address>] not found. Runtime statistics for the identified Clean Access Server. The information is: load factor Current number of packets in the queue that the server is processing (i.e., the current load being handled by the Clean Access Server). max since reboot The maximum number of packets in the queue at any one time (i.e., the maximum load handled by the Clean Access Server). mem The memory usage statistics. This lists the used memory, shared memory, buffered memory, and unused memory. cpu The processor load on the hardware. This error message appears when the CAM does not receive appropriate MAC Notification about the client machine. Three common causes for this error condition are: The SNMP trap syntax from the managed switch is not compatible with the SNMP trap syntax on the CAM. (Ensure the syntax/configuration between the switch and the CAM is consistent.) The client machine is already connected to a switch port on the Authentication VLAN before the CAM is configured to manage the switch, thus the CAM cannot authenticate the OOB user login request because the CAM is not aware of the client machine connected to the switch port. (Try disconnecting the client machine from the switch port and reconnecting.) There are one or more device filters acting upon the client machine MAC address and/or the client machine MAC address appears as an exempt device in the CAM s Certified Devices List. N/A A-5

CAM Event Log Messages Appendix A and Event Log Messages A-6

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback