Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

No Reason for Host Check Failure (AUT22925)

v.brown_
New Contributor
‎05-30-2013 09:58:AM
‎05-30-2013 09:58:AM

No Reason for Host Check Failure (AUT22925)

We recently upgraded to 7.2R9 and ESAP 2.3.7 on a SA6500.  We have received a number of host check failure with no "Reason" information.  What would cause this?  Attached is a segment from the user access log.

 

Info     AUT22925     2013-05-30 - 09:47:44 - XX.102.38.XXX- System - ()[] - Host Checker policy 'Anti-Virus Check' failed on host  XX.102.38.XXX . Reason: ''. -    


Info     AUT22925     2013-05-30 - 09:47:44 - XX.102.38.XXX- System - ()[] - Host Checker policy 'OS Check' failed on host 67.102.38.XXX . Reason: ''. -    

Info     AUT22925     2013-05-29 - 12:33:45 - XX.150.2.XX- System - ()[] - Host Checker policy 'Anti-Virus Check' failed on host XX.150.2.XX . Reason: 'PccNTMon.exe not found; avgfws9.exe not found; msseces.exe not found; McAfee VirusScan Enterprise 8.7.0.570 does not comply with policy. Compliance requires real time protection enabled.'. -    

The "XX" was added by me.  There were valid IPs there.

 

Thanks.

0 Kudos
9 REPLIES 9
jayLaiz_
Super Contributor
‎05-31-2013 07:47:AM
‎05-31-2013 07:47:AM

Re: No Reason for Host Check Failure (AUT22925)

HI,

 

It is really hard to say without the client debug log data.

 

Regards,

Jay

0 Kudos
zanyterp_
Respected Contributor
‎06-01-2013 06:05:AM
‎06-01-2013 06:05:AM

Re: No Reason for Host Check Failure (AUT22925)

If there are multiple items in each check, the reason will not always show if the user passed one but not all.
Or if that was a re-check after authentication, the failure reasons may not be displayed.
0 Kudos
-red-_
Frequent Contributor
‎06-04-2013 10:54:AM
‎06-04-2013 10:54:AM

Re: No Reason for Host Check Failure (AUT22925)

I have seen this before as well immediately following ESAP update. One thing I noticed when these failures occur is that if you review your rules, and you look at the listing of AV/FW products you check for, the lists are blank. Reverting and re-ugrading esap seems to have fixed the problem. We never found the root cause, but ever since then, I always check the product drop-down list as soon as the new ESAP plug in goes active.

0 Kudos
-red-_
Frequent Contributor
‎06-05-2013 09:27:AM
‎06-05-2013 09:27:AM

Re: No Reason for Host Check Failure (AUT22925)

I think I jinxed myself after the last post. Updated ESAP this morning then started getting a ton of Host Checker policy XXX failed on host... "Reason Internal error while evaluating rule XXXX"

 

What I had noticed is that issue was isolated to a single cluster member. The remaining 3 appliances seemed to have no problems after the update, and all the errors were coming from one box.  I disabled him on the ltm and will see about rebooting him later.  May open a ticket with Juniper to dee what happened, this is a new one by me.

 

 

0 Kudos
v.brown_
New Contributor
‎06-05-2013 11:00:AM
‎06-05-2013 11:00:AM

Re: No Reason for Host Check Failure (AUT22925)

Thanks for your reply.  I have a ticket open with Juniper Support.  When I get this resolved I will post the solution.

0 Kudos
zanyterp_
Respected Contributor
‎06-05-2013 03:33:PM
‎06-05-2013 03:33:PM

Re: No Reason for Host Check Failure (AUT22925)

#NAME?
0 Kudos
-red-_
Frequent Contributor
‎06-06-2013 05:59:AM
‎06-06-2013 05:59:AM

Re: No Reason for Host Check Failure (AUT22925)

This cluster is running 7.1R10.

 

I have rebooted the box this morning and re-enabled it, still seeing the same problem. Looks like its time for a ticket.

0 Kudos
v.brown_
New Contributor
‎06-11-2013 02:59:PM
‎06-11-2013 02:59:PM

Re: No Reason for Host Check Failure (AUT22925)

We are using 7.2R9.  Prior to that we were at 7.2R5.

0 Kudos
v.brown_
New Contributor
‎06-11-2013 03:04:PM
‎06-11-2013 03:04:PM

Re: No Reason for Host Check Failure (AUT22925)

This is an unrelated question, but how do I change my settings so my something other than my email appears in the posting?  In other words show something like "vcb" instead of my email address.

 

Thanks.

0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.