DescriptionRegistered hosts running the Persistent Agent with virtual adapters are unexpectedly isolated. This can occur when the virtual interface(s) are using a randomized MAC address.
- When a new address is detected, a new adapter record and Rogue host record is created.
- The machine is isolated and user must re-register.
- Eventually, the maximum amount of hosts a user is allowed to register is reached. The user is no longer able to register. To view this setting or for more details, see Allowed Hosts in the Administration Guide.
ScopeVersion: 8.8.3/Agent 5.2.4 and lowerSolutionWorkaround: Delete the old host records from the database in order for the user to register.
Solution:
Option 1: Addressed in appliance version 8.8.5/agent version 5.2.5 and greater. ID 0689275
Option 2: Ensure an agent is installed, then add the vendor OUI or MAC address of the virtual adapter to the Custom Ignored Adapters list. This will prevent adapter records from being created when a new MAC address for a virtual adapter is detected. For instructions, see related KB article below.
Related Articles
Technical Note: Using the Custom Ignored Adapters List
Technical Note: Issues with MAC address randomization
