Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

What does this log means?

Created: 30 May 2013 | 3 comments
D@ry1's picture

Hey guys,

we found this log on the client enforcer log

"Challenge response already sent to RADIUS server. No response, directly send response to switch!"

but we dont know that does it mean. Can anyone tell us what is this?


Operating Systems:

Comments 3 CommentsJump to latest comment

W007's picture


Check same problem thread

Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.

pete_4u2002's picture

the packet is lost and is ready to switch to next radius server that is configured

Mithun Sanghavi's picture


By default the Enforcer 6100 Series Appliance will consider a RADIUS server down if one packet is lost, and automatically switch to the next RADIUS server in the list that is configured on the Symantec Endpoint Protection Manager (SEPM). With Wireless clients, there is expected to be some packet loss, and the negotiation between the Agent computer and the RADIUS server via the Enforcer can cause this scenario.

To prevent the Enforcer from switching to a secondary/backup RADIUS server after only one packet loss, add the same RADIUS server multiple times in the SEPM. The Enforcer will then go to the next RADIUS server in the list. Because the RADIUS servers are repeated in the list, the Enforcer will switch to the same server. It is recommended to add each RADIUS server 3-5 times. 

Mithun Sanghavi
Senior Consultant

Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.