Hello all,
Today I find a interesting thing while I am doing ISE Profiling. I tried to do the task as required and well everything is perfect and I got the required results when I verify.
correct output from first authentication
Interface MAC Address Method Domain Status Session ID
Fa1/0/5 (unknown) N/A DATA Authz Success 000000000000006100D4EE84
Fa1/0/5 0013.194c.e5fe mab VOICE Authz Success 000000000000006200D552DA
However, I treid to do port bounce on int f1/0/5 and observed that after few minutes the port went to error disabled. This is because the ISE server tries to put the MAC address of the TEST PC dynamically in endpoint store during my first authentication because of the RADIUS option enabled in ProfilingConfig. But after when tried to bounce the port the ISE looks at the TESTPC mac address acquired dynamically during first authentication and authorizes the TESTPC to voice VLAN domain this is where the violation occurs and port went error disabled. Please correct me if my explanation is wrong.
%AUTHMGR-5-SUCCESS: Authorization succeeded for client (586d.8fce.a7cd) ->(TESTPC MAC ADDRESS) on Interface Fa1/0/5 AuditSessionID 000000000000006300D8959E
Regards
sri