I was thinking that this had something to do with the local account username not matching the credentials being used for NAC authentication (which is a domain account).
However, that is the case for most of our users, and this particular user has authenticated and passed checks as recently as a few days ago without issue. The older reports that show successful have all of the same User (both detected local user & domain used for NAC auth), Agent & OS info as the recent reports that fail and show [User Mismatch]. From: Cisco Clean Access Users and Administrators [mailto:[email protected]] On Behalf Of Biddle, Rob Sent: Thursday, September 17, 2009 3:32 PM To: [email protected] Subject: [User Mismatch] I have a user that is passing all checks, but NAC is not allowing her out of the Temporary Role due to [User Mismatch]. I've seen the OS Mismatch before when two clients have active NAC logins listed for the same IP, but this is the first I've seen a [User Mismatch]. She was logged in under two different IP addresses (same username & MAC address). I kicked both of those entries and had her reboot, but NAC is still showing [User Mismatch] next to her name in the NAC agent report. NAC 4.6.1 Agent Version 4.6.2.113 Windows Vista Home Basic _____________________________ Robert Biddle Network Systems Engineer / Administrator College of Mount St. Joseph
