This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Knowledge Base

Find answers to your questions and identify resolutions for known issues with knowledge base articles written by SecurID experts.

Request contained EAP identity response in RSA Authentication Manager 8.x RADIUS log data

Article Number

000035203

Applies To

RSA Product Set : SecurID
RSA Product/Service Type : RSA Authentication Manager
RSA Version/Condition: 8.1 Service Pack 1

Issue

An administrator has configured a Cisco Wireless LAN Controller to send RADIUS authentication to a Microsoft Network Policy Server which forwards the RADIUS request to RSA RADIUS.

The  opt/rsa/am/radius.log file named in the format of yyyymmdd.log (for example, 20170529.log and called the RADIUS date.log file) reports the following messages for a failed authentication going through the Cisco Wireless LAN Controller:
  
05/29/2017 15:16:01 Request contained EAP Identity Response, but Identity did not match User-Name 
05/29/2017 15:16:01 Request has invalid syntax (e.g. invalid, missing or duplicate attributes), Rejecting 
05/29/2017 15:16:01 Sent reject response

 

Cause

Enabling and reviewing RSA RADIUS debug data revealed the User-Name in the authentication does not match the user ID in the Authentication Manager database.

Resolution

When performing an authentication the end user must ensure they are using the correct user ID as defined in the Authentication Manager database.
0 Likes
Was this article helpful? Yes No
No ratings

In this article

Version history
Last update:
‎2020-12-12 11:00 PM
Updated by:
Administrator Administrator

Related Content

© 2023 RSA Security LLC or its affiliates. All rights reserved.