Cisco Aironet 1600/2600/3600
Hi Group,
I'm leaning toward buying 2 cisco 2600 access points for our office.
My goal is to eliminate the residential style access points. The issue is security/management. Each time someone leaves the company, the password needs to be changed, and then all the laptops need to be changed. Looking for a better managed solution.
I am aware that cisco also offers controllers to simplify management, but since we are only needing 2 access points, I want to know if I can successfully integrate these 2 access points with active directory without a controller.
A couple of other questions.
Is a radius server required for this or can the AP's directly talk with Active Directory via LDAP.
Without a controller, does each AP require a different SSID, would like to have them the same?
Is any software required to be installed on the laptops (win xp and 7)
Any advantages to using a controller for a 2 AP system?
Thanks for the info.
Take a look at this PDF, you can order one of these for free when you place an order.
http://www.cisco.com/en/US/docs/wireless/flyers/APbracketsAndClips.pdf
The AP you will need if your in th eUS is air-cap2602i-a-k9. I would make sure when you order the WLC2504 that you also mention code 7.3 or 7.4 so it gets preloaded since the 2602's require version 7.2.110.0 or newer... I would go with the 7.4.
Thanks,
Scott
Help out other by using the rating system and marking answered questions as "Answered"
Similar Messages
-
Cisco Aironet 1600 - DHCP Offer Problem
Hi,
I have dhcp problem with our new AP:
I add an AP to our LAN.
I make a simple configuration with a WPA authenticate.
I can connect some equipment to this AP and our DHCP give an address correctly.
We use adptator to give wireless connection to old station with old operaing system (adaptator example : Netgear WNCE3001)
This adaptor connect to AP and receive an address from DHCP.
My problem is the equipment behind this adpatator send a DHCP request, our server send a DHCP offer but never arrive to this equipment .....
Same problem with another adpatator (TRENDnet and ZyXEL)
I think Cisco 1600 dont return correctly the DHCP offer, perhaps i miss some configuration.
Anyone can help me ?
Thx
In attachment AP configuration
AP system information:
Product/Model Number:
AIR-SAP1602I-E-K9
Top Assembly Serial Number:
[removed]
System Software Filename:
ap1g2-k9w7-tar.152-2.JB2
System Software Version:
15.2(2)JB2
Bootloader Version:
BOOTLDR: C1600 Boot Loader (AP1G2-BOOT-M) LoaderVersion 15.2(2)JAX, RELEASE SOFTWARE (fc1)Now that I have googeld on your client (Netgear WNCE3001) I really understand want you are trying to accomplish. Want you want is this client acting like something called a workgroup bridge (at least, that is how it is called when you have an Cisco AP fulfilling this role).
With the Cisco deployment you configure the AP as a workgroup bridge with multiple client MAC (and IP) addresses behind it. If the infrastructure where the AP should associated with is non Cisco you can use the "universal mode" where you can just use one (wired) client connected after the AP.
Now back to your Netgear client. I have not seen this client in real life, but if I read the manual I'm getting the feeling that this client does a little more than only bridging. At least there is no option to really configure the workgroup bridge stuff and the WLAN interface is being called "Internet adapter". There is also a option for an LAN DHCP server, which is kinda confusing as well if you ask me.
However, the thing that we can try is using a static IP address on the wired client side and test if communication is possible. Could you please give the output of the "show bridge 1" and "show dot11 ass" commands in that situation? Last but not least you can test if your configuration works after configuring "config network ip-mac-binding disable" on the WLC. -
Hello
I have 3 new Cisco AIR-SAP1602I-E-K9 for a large 2 floor halls. Max Users: 50.
What could be the best practice tools to calculate the signal coverage + quality + speed
when installing the access points through the halls ?
Thanks for the answers from implemented and deployed studies.Hi,
First choice : Try to get a support partner who is expert in this field.
Ekahau_HeatMapper : try this one
RegArds
Don't forget to rate helpful post.
Sent from Cisco Technical Support iPhone App -
Hello experts,
I wanto know is it possible to plug a cisco aironet ap 2600 to a Cisco-Switch with PoE capabale port and give power to the Cisco AP-2600 through the switch port ? if yes , please let me know what is the exact switch part-number so that i can order one
Currently i have a Cisco Cat 3550-24 , does it support PoE??
Thanks for your commentsTo expand on what Scott said:
Yes the AP can take POE from a switch. But you need one of the switches that support 802.3af. the 3550-24 if it's a pwr only supports the pre-standard 7w of power.
HTH,
Steve
Please remember to rate useful posts, and mark questions as answered -
RRAS Authentication and Aironet 1600
Hello
I'm having trouble configuring my Cisco Aironet 1600 to forward to my windows server for Authenticaiton.
when i attempt to connect to the access point. I get a responce in my windows event id 6272 stating
Network Policy Server granted access to a user
but when i look at the cisco event id i see an authentication error. I ran a trace on the ap when i attempted the communiction. here is the results.
any help would be greatly appreciated.
WAP>
Jan 6 14:20:31.313: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 0023.142b.319c
Jan 6 14:20:31.313: dot11_auth_dot1x_send_id_req_to_client: Client 0023.142b.319c timer started for 30 seconds
Jan 6 14:20:31.353: dot11_auth_dot1x_run_rfsm: Executing Action(CLIENT_WAIT,EAP_START) for 0023.142b.319c
Jan 6 14:20:31.353: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 0023.142b.319c
Jan 6 14:20:31.353: dot11_auth_dot1x_send_id_req_to_client: Client 0023.142b.
WAP>319c timer started for 30 seconds
WAP>
Jan 6 14:20:48.877: dot11_auth_dot1x_run_rfsm: Executing Action(CLIENT_WAIT,CLIENT_REPLY) for 0023.142b.319c
Jan 6 14:20:48.877: dot11_auth_dot1x_send_response_to_server: Sending client 0023.142b.319c data to server
Jan 6 14:20:48.877: dot11_auth_dot1x_send_response_to_server: Started timer server_timeout 60 seconds
Jan 6 14:20:48.877: RADIUS/ENCODE(00001477):Orig. component type = DOT11
Jan 6 14:20:48.877: RADIUS: AAA Unsupported Attr: ssid [347] 8
Jan 6 14:20:48.877: RADIUS:
WAP> 50 48 41 4E 54 4F [ PHANTO]
Jan 6 14:20:48.877: RADIUS: AAA Unsupported Attr: service-type [345] 4 1
Jan 6 14:20:48.877: RADIUS: AAA Unsupported Attr: interface [222] 4
Jan 6 14:20:48.877: RADIUS: 31 36 [ 16]
Jan 6 14:20:48.877: RADIUS(00001477): Config NAS IP: 192.168.0.222
Jan 6 14:20:48.877: RADIUS(00001477): Config NAS IPv6:
Jan 6 14:20:48.877: RADIUS/ENCODE(00001477): acct_session_id: 5229
Jan 6 14:20:48.877: RADIUS(00001477): Config NA
WAP>S IP: 192.168.0.222
Jan 6 14:20:48.877: RADIUS(00001477): sending
Jan 6 14:20:48.877: RADIUS(00001477): Send Access-Request to 192.168.0.19:1645 id 1645/70, len 187
Jan 6 14:20:48.877: RADIUS: authenticator C4 49 1B CE FC 2F 22 6F - 16 46 8F 44 3B 10 48 AC
Jan 6 14:20:48.877: RADIUS: User-Name [1] 25 "domain\user"
Jan 6 14:20:48.877: RADIUS: Framed-MTU [12] 6 1400
Jan 6 14:20:48.877: RADIUS: Called-Station-Id [30] 28 "34-A8-4E-B
WAP>D-F3-50:PHANTOM5"
Jan 6 14:20:48.877: RADIUS: Calling-Station-Id [31] 16 "0023.142b.319c"
Jan 6 14:20:48.877: RADIUS: Service-Type [6] 6 Login [1]
Jan 6 14:20:48.877: RADIUS: Message-Authenticato[80] 18
Jan 6 14:20:48.877: RADIUS: 17 BE 54 D2 40 4E 08 DF 55 50 47 54 22 FF 5C 23 [ T@NUPGT"\#]
Jan 6 14:20:48.877: RADIUS: EAP-Message [79] 30
Jan 6 14:20:48.877: RADIUS: 02 02 00 1C 01 65 78 71 75 61 64 72 75 6D 5C 61 64 6D 69 6E 69 [ex
WAP>quadrum\admini]
Jan 6 14:20:48.877: RADIUS: 73 74 72 61 74 6F 72 [ strator]
Jan 6 14:20:48.877: RADIUS: NAS-Port-Type [61] 6 802.11 wireless [19]
Jan 6 14:20:48.877: RADIUS: NAS-Port [5] 6 1610
Jan 6 14:20:48.877: RADIUS: NAS-Port-Id [87] 6 "1610"
Jan 6 14:20:48.877: RADIUS: NAS-IP-Address [4] 6 192.168.0.222
Jan 6 14:20:48.877: RADIUS: Nas-Identifier [32] 14 "WAP"
Jan 6 1
WAP>4:20:48.877: RADIUS(00001477): Sending a IPv4 Radius Packet
Jan 6 14:20:48.877: RADIUS(00001477): Started 5 sec timeout
Jan 6 14:20:48.881: RADIUS: Received from id 1645/70 192.168.0.19:1645, Access-Accept, len 66
Jan 6 14:20:48.881: RADIUS: authenticator 4D AA 3F 3F C5 78 F4 DB - B2 04 AF 4E 0A DC A5 6D
Jan 6 14:20:48.881: RADIUS: Class [25] 46
Jan 6 14:20:48.881: RADIUS: B2 3C 09 FD 00 00 01 37 00 01 02 00 C0 A8 00 13 00 00 00 00 5D 7B 6B 09 AC 82 24 A3 01 CE FC 72 A7 8E 51
WAP> DC 00 00 00 00 00 00 02 64 [ <7]{k$rQd]
Jan 6 14:20:48.881: RADIUS(00001477): Received from id 1645/70
Jan 6 14:20:48.881: dot11_auth_dot1x_run_rfsm: Executing Action(SERVER_WAIT,SERVER_FAIL) for 0023.142b.319c
Jan 6 14:20:48.881: dot11_auth_dot1x_send_client_fail: Authentication failed for 0023.142b.319c
Jan 6 14:20:48.881: %DOT11-7-AUTH_FAILED: Station 0023.142b.319c Authentication failed
Jan 6 14:20:49.101: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 0023.142b.
WAP>319c
Jan 6 14:20:49.105: dot11_auth_dot1x_send_id_req_to_client: Client 0023.142b.319c timer started for 30 seconds
Jan 6 14:20:49.141: dot11_auth_dot1x_run_rfsm: Executing Action(CLIENT_WAIT,EAP_START) for 0023.142b.319c
Jan 6 14:20:49.141: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 0023.142b.319c
Jan 6 14:20:49.141: dot11_auth_dot1x_send_id_req_to_client: Client 0023.142b.319c timer started for 30 seconds
WAP>
Jan 6 14:21:03.649: dot11_auth_dot1x_run_rfsm: Executing Action(CLIENT_WAIT,CLIENT_REPLY) for 0023.142b.319c
Jan 6 14:21:03.649: dot11_auth_dot1x_send_response_to_server: Sending client 0023.142b.319c data to server
Jan 6 14:21:03.649: dot11_auth_dot1x_send_response_to_server: Started timer server_timeout 60 seconds
Jan 6 14:21:03.649: RADIUS/ENCODE(00001478):Orig. component type = DOT11
Jan 6 14:21:03.649: RADIUS: AAA Unsupported Attr: ssid [347] 8
Jan 6 14:21:03.649: RADIUS:
WAP> 50 48 41 4E 54 4F [ PHANTO]
Jan 6 14:21:03.649: RADIUS: AAA Unsupported Attr: service-type [345] 4 1
Jan 6 14:21:03.649: RADIUS: AAA Unsupported Attr: interface [222] 4
Jan 6 14:21:03.649: RADIUS: 31 36 [ 16]
Jan 6 14:21:03.649: RADIUS(00001478): Config NAS IP: 192.168.0.222
Jan 6 14:21:03.649: RADIUS(00001478): Config NAS IPv6:
Jan 6 14:21:03.649: RADIUS/ENCODE(00001478): acct_session_id: 5230
Jan 6 14:21:03.649: RADIUS(00001478): Config NA
WAP>S IP: 192.168.0.222
Jan 6 14:21:03.649: RADIUS(00001478): sending
Jan 6 14:21:03.649: RADIUS(00001478): Send Access-Request to 192.168.0.19:1645 id 1645/71, len 187
Jan 6 14:21:03.649: RADIUS: authenticator D5 2A B3 D5 B2 29 56 EC - 29 FB 47 F1 5C F1 10 0B
Jan 6 14:21:03.649: RADIUS: User-Name [1] 25 "domain\user"
Jan 6 14:21:03.649: RADIUS: Framed-MTU [12] 6 1400
Jan 6 14:21:03.649: RADIUS: Called-Station-Id [30] 28 "34-A8-4E-B
WAP>D-F3-50:PHANTOM5"
Jan 6 14:21:03.649: RADIUS: Calling-Station-Id [31] 16 "0023.142b.319c"
Jan 6 14:21:03.649: RADIUS: Service-Type [6] 6 Login [1]
Jan 6 14:21:03.649: RADIUS: Message-Authenticato[80] 18
Jan 6 14:21:03.649: RADIUS: CD CF 69 D6 E4 E5 B3 6E F5 1F 5B 78 E4 49 D1 61 [ in[xIa]
Jan 6 14:21:03.649: RADIUS: EAP-Message [79] 30
Jan 6 14:21:03.649: RADIUS: 02 02 00 1C 01 65 78 71 75 61 64 72 75 6D 5C 61 64 6D 69 6E 69 [ex
WAP>quadrum\admini]
Jan 6 14:21:03.649: RADIUS: 73 74 72 61 74 6F 72 [ strator]
Jan 6 14:21:03.649: RADIUS: NAS-Port-Type [61] 6 802.11 wireless [19]
Jan 6 14:21:03.649: RADIUS: NAS-Port [5] 6 1611
Jan 6 14:21:03.649: RADIUS: NAS-Port-Id [87] 6 "1611"
Jan 6 14:21:03.649: RADIUS: NAS-IP-Address [4] 6 192.168.0.222
Jan 6 14:21:03.649: RADIUS: Nas-Identifier [32] 14 "WAP"
Jan 6 1
WAP>4:21:03.649: RADIUS(00001478): Sending a IPv4 Radius Packet
Jan 6 14:21:03.649: RADIUS(00001478): Started 5 sec timeout
Jan 6 14:21:03.649: RADIUS: Received from id 1645/71 192.168.0.19:1645, Access-Accept, len 66
Jan 6 14:21:03.649: RADIUS: authenticator D1 A3 D7 6C DC 7E C6 D1 - A2 DB 6E 13 94 F4 D3 AE
Jan 6 14:21:03.649: RADIUS: Class [25] 46
Jan 6 14:21:03.649: RADIUS: B2 3D 09 FE 00 00 01 37 00 01 02 00 C0 A8 00 13 00 00 00 00 5D 7B 6B 09 AC 82 24 A3 01 CE FC 72 A7 8E 51
WAP> DC 00 00 00 00 00 00 02 65 [ =7]{k$rQe]
Jan 6 14:21:03.653: RADIUS(00001478): Received from id 1645/71
Jan 6 14:21:03.653: dot11_auth_dot1x_run_rfsm: Executing Action(SERVER_WAIT,SERVER_FAIL) for 0023.142b.319c
Jan 6 14:21:03.653: dot11_auth_dot1x_send_client_fail: Authentication failed for 0023.142b.319c
Jan 6 14:21:03.653: %DOT11-7-AUTH_FAILED: Station 0023.142b.319c Authentication failed
WAP>
Jan 6 14:21:13.881: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 0023.142b.319c
Jan 6 14:21:13.881: dot11_auth_dot1x_send_id_req_to_client: Client 0023.142b.319c timer started for 30 seconds
Jan 6 14:21:13.897: dot11_auth_dot1x_run_rfsm: Executing Action(CLIENT_WAIT,EAP_START) for 0023.142b.319c
Jan 6 14:21:13.897: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 0023.142b.319c
Jan 6 14:21:13.897: dot11_auth_dot1x_send_id_req_to_client: Client 0023.142b.
WAP>319c timer started for 30 seconds
Jan 6 14:21:14.629: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 0023.142b.319c
Jan 6 14:21:14.629: dot11_auth_dot1x_send_id_req_to_client: Client 0023.142b.319c timer started for 30 seconds
Jan 6 14:21:14.645: dot11_auth_dot1x_run_rfsm: Executing Action(CLIENT_WAIT,EAP_START) for 0023.142b.319c
Jan 6 14:21:14.645: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 0023.142b.319c
Jan 6 14:21:14.645: dot11_auth_dot1x_send_id
WAP>_req_to_client: Client 0023.142b.319c timer started for 30 seconds
Jan 6 14:21:14.653: dot11_auth_dot1x_run_rfsm: Executing Action(CLIENT_WAIT,CLIENT_REPLY) for 0023.142b.319c
Jan 6 14:21:14.653: dot11_auth_dot1x_send_response_to_server: Sending client 0023.142b.319c data to server
Jan 6 14:21:14.653: dot11_auth_dot1x_send_response_to_server: Started timer server_timeout 60 seconds
Jan 6 14:21:14.653: RADIUS/ENCODE(0000147A):Orig. component type = DOT11
Jan 6 14:21:14.653: RADIUS: AAA Unsupporte
WAP>d Attr: ssid [347] 8
Jan 6 14:21:14.657: RADIUS: 50 48 41 4E 54 4F [ PHANTO]
Jan 6 14:21:14.657: RADIUS: AAA Unsupported Attr: service-type [345] 4 1
Jan 6 14:21:14.657: RADIUS: AAA Unsupported Attr: interface [222] 4
Jan 6 14:21:14.657: RADIUS: 31 36 [ 16]
Jan 6 14:21:14.657: RADIUS(0000147A): Config NAS IP: 192.168.0.222
Jan 6 14:21:14.657: RADIUS(0000147A): Config NAS IPv6:
Jan 6 14:21:14.657: RADIUS/ENCODE(0000147A): acct_
WAP>session_id: 5232
Jan 6 14:21:14.657: RADIUS(0000147A): Config NAS IP: 192.168.0.222
Jan 6 14:21:14.657: RADIUS(0000147A): sending
Jan 6 14:21:14.657: RADIUS(0000147A): Send Access-Request to 192.168.0.19:1645 id 1645/72, len 151
Jan 6 14:21:14.657: RADIUS: authenticator 75 D4 9B 2B 54 28 E0 85 - E1 CE 15 71 98 01 6D 92
Jan 6 14:21:14.657: RADIUS: User-Name [1] 7 "Brian"
Jan 6 14:21:14.657: RADIUS: Framed-MTU [12] 6 1400
Jan 6 14:21:14.657: RA
WAP>DIUS: Called-Station-Id [30] 28 "34-A8-4E-BD-F3-50:PHANTOM5"
Jan 6 14:21:14.657: RADIUS: Calling-Station-Id [31] 16 "0023.142b.319c"
Jan 6 14:21:14.657: RADIUS: Service-Type [6] 6 Login [1]
Jan 6 14:21:14.657: RADIUS: Message-Authenticato[80] 18
Jan 6 14:21:14.657: RADIUS: 5E FF D3 31 9E E4 E8 B0 74 65 DA 64 E3 DC 75 53 [ ^1teduS]
Jan 6 14:21:14.657: RADIUS: EAP-Message [79] 12
Jan 6 14:21:14.657: RADIUS: 02 02 00 0A 01 42 7
WAP>2 69 61 6E [ Brian]
Jan 6 14:21:14.657: RADIUS: NAS-Port-Type [61] 6 802.11 wireless [19]
Jan 6 14:21:14.657: RADIUS: NAS-Port [5] 6 1613
Jan 6 14:21:14.657: RADIUS: NAS-Port-Id [87] 6 "1613"
Jan 6 14:21:14.657: RADIUS: NAS-IP-Address [4] 6 192.168.0.222
Jan 6 14:21:14.657: RADIUS: Nas-Identifier [32] 14 "WAP"
Jan 6 14:21:14.657: RADIUS(0000147A): Sending a IPv4 Radius Packe
WAP>t
Jan 6 14:21:14.657: RADIUS(0000147A): Started 5 sec timeout
Jan 6 14:21:14.657: RADIUS: Received from id 1645/72 192.168.0.19:1645, Access-Accept, len 66
Jan 6 14:21:14.657: RADIUS: authenticator F1 9F 29 38 10 39 E1 0A - FD 73 87 03 D3 5D 34 02
Jan 6 14:21:14.657: RADIUS: Class [25] 46
Jan 6 14:21:14.657: RADIUS: B2 3E 09 FF 00 00 01 37 00 01 02 00 C0 A8 00 13 00 00 00 00 5D 7B 6B 09 AC 82 24 A3 01 CE FC 72 A7 8E 51 DC 00 00 00 00 00 00 02 66 [ >7]{k$rQf]
Jan 6 1
WAP>4:21:14.657: RADIUS(0000147A): Received from id 1645/72
Jan 6 14:21:14.657: dot11_auth_dot1x_run_rfsm: Executing Action(SERVER_WAIT,SERVER_FAIL) for 0023.142b.319c
Jan 6 14:21:14.657: dot11_auth_dot1x_send_client_fail: Authentication failed for 0023.142b.319c
Jan 6 14:21:14.657: %DOT11-7-AUTH_FAILED: Station 0023.142b.319c Authentication failed
Jan 6 14:21:14.877: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 0023.142b.319c
Jan 6 14:21:14.877: dot11_auth_dot1x_send_id_req_to
WAP>_client: Client 0023.142b.319c timer started for 30 seconds
Jan 6 14:21:14.889: dot11_auth_dot1x_run_rfsm: Executing Action(CLIENT_WAIT,EAP_START) for 0023.142b.319c
Jan 6 14:21:14.889: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 0023.142b.319c
Jan 6 14:21:14.889: dot11_auth_dot1x_send_id_req_to_client: Client 0023.142b.319c timer started for 30 seconds
Jan 6 14:21:14.897: dot11_auth_dot1x_run_rfsm: Executing Action(CLIENT_WAIT,CLIENT_REPLY) for 0023.142b.319c
Jan 6 14:21:
WAP>14.897: dot11_auth_dot1x_send_response_to_server: Sending client 0023.142b.319c data to server
Jan 6 14:21:14.897: dot11_auth_dot1x_send_response_to_server: Started timer server_timeout 60 seconds
Jan 6 14:21:14.897: RADIUS/ENCODE(0000147B):Orig. component type = DOT11
Jan 6 14:21:14.897: RADIUS: AAA Unsupported Attr: ssid [347] 8
Jan 6 14:21:14.897: RADIUS: 50 48 41 4E 54 4F [ PHANTO]
Jan 6 14:21:14.897: RADIUS: AAA Unsupported Attr: service-type [345] 4 1
WAP>Jan 6 14:21:14.897: RADIUS: AAA Unsupported Attr: interface [222] 4
Jan 6 14:21:14.897: RADIUS: 31 36 [ 16]
Jan 6 14:21:14.897: RADIUS(0000147B): Config NAS IP: 192.168.0.222
Jan 6 14:21:14.897: RADIUS(0000147B): Config NAS IPv6:
Jan 6 14:21:14.897: RADIUS/ENCODE(0000147B): acct_session_id: 5233
Jan 6 14:21:14.897: RADIUS(0000147B): Config NAS IP: 192.168.0.222
Jan 6 14:21:14.897: RADIUS(0000147B): sending
Jan 6 14:21:14.897: RADIUS(0000147B): Send Access-Reques
WAP>t to 192.168.0.19:1645 id 1645/73, len 151
Jan 6 14:21:14.897: RADIUS: authenticator 78 C3 13 8A 04 95 E5 FF - 75 6B 15 A8 A3 04 8E 8B
Jan 6 14:21:14.897: RADIUS: User-Name [1] 7 "Brian"
Jan 6 14:21:14.897: RADIUS: Framed-MTU [12] 6 1400
Jan 6 14:21:14.897: RADIUS: Called-Station-Id [30] 28 "34-A8-4E-BD-F3-50:PHANTOM5"
Jan 6 14:21:14.897: RADIUS: Calling-Station-Id [31] 16 "0023.142b.319c"
Jan 6 14:21:14.897: RADIUS: Service-Type
WAP> [6] 6 Login [1]
Jan 6 14:21:14.897: RADIUS: Message-Authenticato[80] 18
Jan 6 14:21:14.897: RADIUS: DA 6E C2 AD 8B 41 1C 2F 28 6A D9 2B 0A BD 8B 76 [ nA/(j+v]
Jan 6 14:21:14.897: RADIUS: EAP-Message [79] 12
Jan 6 14:21:14.897: RADIUS: 02 02 00 0A 01 42 72 69 61 6E [ Brian]
Jan 6 14:21:14.897: RADIUS: NAS-Port-Type [61] 6 802.11 wireless [19]
Jan 6 14:21:14.897: RADIUS: NAS-Port [5] 6 1614
WAP>
Jan 6 14:21:14.897: RADIUS: NAS-Port-Id [87] 6 "1614"
Jan 6 14:21:14.897: RADIUS: NAS-IP-Address [4] 6 192.168.0.222
Jan 6 14:21:14.897: RADIUS: Nas-Identifier [32] 14 "WAP"
Jan 6 14:21:14.897: RADIUS(0000147B): Sending a IPv4 Radius Packet
Jan 6 14:21:14.897: RADIUS(0000147B): Started 5 sec timeout
Jan 6 14:21:14.901: RADIUS: Received from id 1645/73 192.168.0.19:1645, Access-Accept, len 66
Jan 6 14:21:14.901: RADIUS: a
WAP>uthenticator 4A AA 91 09 C1 0C 05 25 - 59 17 27 0C 4C 1B 29 2D
Jan 6 14:21:14.901: RADIUS: Class [25] 46
Jan 6 14:21:14.901: RADIUS: B2 3F 0A 00 00 00 01 37 00 01 02 00 C0 A8 00 13 00 00 00 00 5D 7B 6B 09 AC 82 24 A3 01 CE FC 72 A7 8E 51 DC 00 00 00 00 00 00 02 67 [ ?7]{k$rQg]
Jan 6 14:21:14.901: RADIUS(0000147B): Received from id 1645/73
Jan 6 14:21:14.901: dot11_auth_dot1x_run_rfsm: Executing Action(SERVER_WAIT,SERVER_FAIL) for 0023.142b.319c
Jan 6 14:21:14.901: dot1
WAP>1_auth_dot1x_send_client_fail: Authentication failed for 0023.142b.319c
Jan 6 14:21:25.129: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 0023.142b.319c
Jan 6 14:21:25.129: dot11_auth_dot1x_send_id_req_to_client: Client 0023.142b.319c timer started for 30 seconds
Jan 6 14:21:25.149: dot11_auth_dot1x_run_rfsm: Executing Action(CLIENT_WAIT,EAP_START) for 0023.142b.319c
Jan 6 14:21:25.149: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 0023.142b.319c
Jan 6
WAP>14:21:25.149: dot11_auth_dot1x_send_id_req_to_client: Client 0023.142b.319c timer started for 30 seconds
Jan 6 14:21:25.881: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 0023.142b.319c
Jan 6 14:21:25.881: dot11_auth_dot1x_send_id_req_to_client: Client 0023.142b.319c timer started for 30 seconds
Jan 6 14:21:25.897: dot11_auth_dot1x_run_rfsm: Executing Action(CLIENT_WAIT,EAP_START) for 0023.142b.319c
Jan 6 14:21:25.897: dot11_auth_dot1x_send_id_req_to_client: Sending identity r
WAP>equest to 0023.142b.319c
Jan 6 14:21:25.897: dot11_auth_dot1x_send_id_req_to_client: Client 0023.142b.319c timer started for 30 seconds
WAP>Hello Steve,
May you help me?
I have the same problem. I use NPS (2008R2) with EAP authentication type Microsoft Protected EAP (PEAP)
ap#
Jun 13 2014 09:09:54.626 UTC: AAA/BIND(000000CF): Bind i/f
Jun 13 2014 09:09:54.626 UTC: dot11_auth_dot1x_start: in the dot11_auth_dot1x_start
Jun 13 2014 09:09:54.626 UTC: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 001e.58a2.ba4b
Jun 13 2014 09:09:54.626 UTC: dot11_auth_dot1x_send_id_req_to_client: Client 001e.58a2.ba4b timer started for 30 seconds
Jun 13 2014 09:09:54.678 UTC: dot11_auth_parse_client_pak: Received EAPOL packet from 001e.58a2.ba4b
Jun 13 2014 09:09:54.678 UTC: dot11_auth_dot1x_run_rfsm: Executing Action(CLIENT_WAIT,EAP_START) for 001e.58a2.ba4b
Jun 13 2014 09:09:54.678 UTC: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 001e.58a2.ba4b
Jun 13 2014 09:09:54.678 UTC: dot11_auth_dot1x_send_id_req_to_client: Client 001e.58a2.ba4b timer started for 30 seconds
Jun 13 2014 09:09:54.722 UTC: dot11_auth_parse_client_pak: Received EAPOL packet from 001e.58a2.ba4b
Jun 13 2014 09:09:54.722 UTC: dot11_auth_dot1x_run_rfsm: Executing Action(CLIENT_WAIT,CLIENT_REPLY) for 001e.58a2.ba4b
Jun 13 2014 09:09:54.722 UTC: dot11_auth_dot1x_send_response_to_server: Sending client 001e.58a2.ba4b data to server
Jun 13 2014 09:09:54.722 UTC: AAA/AUTHEN/PPP (000000CF): Pick method list 'eap_methods1'
Jun 13 2014 09:09:54.722 UTC: dot11_auth_dot1x_send_response_to_server: Started timer server_timeout 60 seconds
Jun 13 2014 09:09:54.722 UTC: RADIUS/ENCODE(000000CF):Orig. component type = DOT11
Jun 13 2014 09:09:54.722 UTC: RADIUS: AAA Unsupported Attr: ssid [347] 2
Jun 13 2014 09:09:54.722 UTC: RADIUS: AAA Unsupported Attr: service-type [345] 4 1
Jun 13 2014 09:09:54.722 UTC: RADIUS: AAA Unsupported Attr: interface [222] 3
Jun 13 2014 09:09:54.722 UTC: RADIUS: 33 [ 3]
Jun 13 2014 09:09:54.722 UTC: RADIUS(000000CF): Config NAS IP: 172.16.254.116
Jun 13 2014 09:09:54.722 UTC: RADIUS(000000CF): Config NAS IPv6:
Jun 13 2014 09:09:54.722 UTC: RADIUS/ENCODE(000000CF): acct_session_id: 196
Jun 13 2014 09:09:54.722 UTC: RADIUS(000000CF): Config NAS IP: 172.16.254.116
Jun 13 2014 09:09:54.722 UTC: RADIUS(000000CF): sending
Jun 13 2014 09:09:54.722 UTC: RADIUS(000000CF): Send Access-Request to 172.16.0.32:1812 id 1645/31, len 176
Jun 13 2014 09:09:54.722 UTC: RADIUS: authenticator ED 3E CB D4 84 55 33 F0 - 86 6C DF 99 16 BA EB AA
Jun 13 2014 09:09:54.722 UTC: RADIUS: User-Name [1] 28 "host/WM-WSUS-998.empresa.local"
Jun 13 2014 09:09:54.722 UTC: RADIUS: Framed-MTU [12] 6 1400
Jun 13 2014 09:09:54.722 UTC: RADIUS: Called-Station-Id [30] 22 "2C-3E-CF-0B-BF-60:1A"
Jun 13 2014 09:09:54.722 UTC: RADIUS: Calling-Station-Id [31] 16 "001e.58a2.ba4b"
Jun 13 2014 09:09:54.722 UTC: RADIUS: Service-Type [6] 6 Login [1]
Jun 13 2014 09:09:54.722 UTC: RADIUS: Message-Authenticato[80] 18
Jun 13 2014 09:09:54.722 UTC: RADIUS: 59 93 3E 54 FB 36 B1 66 AB 37 0B 2C 1F F1 EC F6 [ Y>T6f7,]
Jun 13 2014 09:09:54.722 UTC: RADIUS: EAP-Message [79] 33
Jun 13 2014 09:09:54.722 UTC: RADIUS: 02 02 00 1F 01 68 6F 73 74 2F 57 4D 2D 57 53 55 53 2D 39 39 38 [host/WM-WSUS-998]
Jun 13 2014 09:09:54.722 UTC: RADIUS: 2E 63 62 61 2E 6C 6F 63 61 6C [ .empresa.local]
Jun 13 2014 09:09:54.722 UTC: RADIUS: NAS-Port-Type [61] 6 802.11 wireless [19]
Jun 13 2014 09:09:54.722 UTC: RADIUS: NAS-Port [5] 6 300
Jun 13 2014 09:09:54.722 UTC: RADIUS: NAS-Port-Id [87] 5 "300"
Jun 13 2014 09:09:54.722 UTC: RADIUS: NAS-IP-Address [4] 6 172.16.254.116
Jun 13 2014 09:09:54.722 UTC: RADIUS: Nas-Identifier [32] 4 "ap"
Jun 13 2014 09:09:54.722 UTC: RADIUS(000000CF): Sending a IPv4 Radius Packet
Jun 13 2014 09:09:54.722 UTC: RADIUS(000000CF): Started 5 sec timeout
Jun 13 2014 09:09:54.726 UTC: RADIUS: Received from id 1645/31 172.16.0.32:1812, Access-Reject, len 44
Jun 13 2014 09:09:54.726 UTC: RADIUS: authenticator 47 24 C1 77 82 B3 F0 03 - 07 10 27 E8 AB 13 3C A5
Jun 13 2014 09:09:54.726 UTC: RADIUS: EAP-Message [79] 6
Jun 13 2014 09:09:54.726 UTC: RADIUS: 04 02 00 04
Jun 13 2014 09:09:54.726 UTC: RADIUS: Message-Authenticato[80] 18
Jun 13 2014 09:09:54.726 UTC: RADIUS: CB EA D6 A6 38 03 A3 26 6B 7C 32 FA 83 3C 49 0D [ 8&k|2<I]
Jun 13 2014 09:09:54.726 UTC: RADIUS(000000CF): Received from id 1645/31
Jun 13 2014 09:09:54.726 UTC: RADIUS/DECODE: EAP-Message fragments, 4, total 4 bytes
Jun 13 2014 09:09:54.726 UTC: dot11_auth_dot1x_parse_aaa_resp: Received server response: FAIL
Jun 13 2014 09:09:54.726 UTC: dot11_auth_dot1x_parse_aaa_resp: found eap pak in server response
Jun 13 2014 09:09:54.726 UTC: Client 001e.58a2.ba4b failed: by EAP authentication server
Jun 13 2014 09:09:54.726 UTC: dot11_auth_dot1x_run_rfsm: Executing Action(SERVER_WAIT,SERVER_FAIL) for 001e.58a2.ba4b
Jun 13 2014 09:09:54.726 UTC: dot11_auth_dot1x_send_response_to_client: Forwarding server message to client 001e.58a2.ba4b
Jun 13 2014 09:09:54.726 UTC: dot11_auth_dot1x_send_response_to_client: Started timer client_timeout 30 seconds
Jun 13 2014 09:09:54.726 UTC: dot11_auth_dot1x_send_client_fail: Authentication failed for 001e.58a2.ba4b
Jun 13 2014 09:09:54.726 UTC: %DOT11-7-AUTH_FAILED: Station 001e.58a2.ba4b Authentication failed
Jun 13 2014 09:09:55.654 UTC: AAA/BIND(000000D0): Bind i/f
Jun 13 2014 09:09:55.654 UTC: dot11_auth_dot1x_start: in the dot11_auth_dot1x_start
Jun 13 2014 09:09:55.654 UTC: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 001e.58a2.ba4b
Jun 13 2014 09:09:55.654 UTC: dot11_auth_dot1x_send_id_req_to_client: Client 001e.58a2.ba4b timer started for 30 seconds
Jun 13 2014 09:09:55.706 UTC: dot11_auth_parse_client_pak: Received EAPOL packet from 001e.58a2.ba4b
Jun 13 2014 09:09:55.706 UTC: dot11_auth_dot1x_run_rfsm: Executing Action(CLIENT_WAIT,EAP_START) for 001e.58a2.ba4b
Jun 13 2014 09:09:55.710 UTC: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 001e.58a2.ba4b
Jun 13 2014 09:09:55.710 UTC: dot11_auth_dot1x_send_id_req_to_client: Client 001e.58a2.ba4b timer started for 30 seconds
Jun 13 2014 09:09:55.750 UTC: dot11_auth_parse_client_pak: Received EAPOL packet from 001e.58a2.ba4b
Jun 13 2014 09:09:55.750 UTC: dot11_auth_dot1x_run_rfsm: Executing Action(CLIENT_WAIT,CLIENT_REPLY) for 001e.58a2.ba4b
Jun 13 2014 09:09:55.754 UTC: dot11_auth_dot1x_send_response_to_server: Sending client 001e.58a2.ba4b data to server
Jun 13 2014 09:09:55.754 UTC: AAA/AUTHEN/PPP (000000D0): Pick method list 'eap_methods1'
Jun 13 2014 09:09:55.754 UTC: dot11_auth_dot1x_send_response_to_server: Started timer server_timeout 60 seconds
Jun 13 2014 09:09:55.754 UTC: RADIUS/ENCODE(000000D0):Orig. component type = DOT11
Jun 13 2014 09:09:55.754 UTC: RADIUS: AAA Unsupported Attr: ssid [347] 2
Jun 13 2014 09:09:55.754 UTC: RADIUS: AAA Unsupported Attr: service-type [345] 4 1
Jun 13 2014 09:09:55.754 UTC: RADIUS: AAA Unsupported Attr: interface [222] 3
Jun 13 2014 09:09:55.754 UTC: RADIUS: 33 [ 3]
Jun 13 2014 09:09:55.754 UTC: RADIUS(000000D0): Config NAS IP: 172.16.254.116
Jun 13 2014 09:09:55.754 UTC: RADIUS(000000D0): Config NAS IPv6:
Jun 13 2014 09:09:55.754 UTC: RADIUS/ENCODE(000000D0): acct_session_id: 197
Jun 13 2014 09:09:55.754 UTC: RADIUS(000000D0): Config NAS IP: 172.16.254.116
Jun 13 2014 09:09:55.754 UTC: RADIUS(000000D0): sending
Jun 13 2014 09:09:55.754 UTC: RADIUS(000000D0): Send Access-Request to 172.16.0.32:1812 id 1645/32, len 158
Jun 13 2014 09:09:55.754 UTC: RADIUS: authenticator F7 DD 10 96 F1 8E 11 29 - A2 FC 7A 8D B9 A0 D3 02
Jun 13 2014 09:09:55.754 UTC: RADIUS: User-Name [1] 19 "Empresa\Roberto.Carlos"
Jun 13 2014 09:09:55.754 UTC: RADIUS: Framed-MTU [12] 6 1400
Jun 13 2014 09:09:55.754 UTC: RADIUS: Called-Station-Id [30] 22 "2C-3E-CF-0B-BF-60:1A"
Jun 13 2014 09:09:55.754 UTC: RADIUS: Calling-Station-Id [31] 16 "001e.58a2.ba4b"
Jun 13 2014 09:09:55.754 UTC: RADIUS: Service-Type [6] 6 Login [1]
Jun 13 2014 09:09:55.754 UTC: RADIUS: Message-Authenticato[80] 18
Jun 13 2014 09:09:55.754 UTC: RADIUS: 69 B6 AA D3 A4 FD 65 CF 65 31 50 A1 1E 05 77 0C [ iee1Pw]
Jun 13 2014 09:09:55.754 UTC: RADIUS: EAP-Message [79] 24
Jun 13 2014 09:09:55.754 UTC: RADIUS: 02 02 00 16 01 43 42 41 5C 50 65 64 72 6F 2E 41 6C 6D 65 69 64 [Empresa\Roberto.Carlos]
Jun 13 2014 09:09:55.754 UTC: RADIUS: 61 [ a]
Jun 13 2014 09:09:55.754 UTC: RADIUS: NAS-Port-Type [61] 6 802.11 wireless [19]
Jun 13 2014 09:09:55.754 UTC: RADIUS: NAS-Port [5] 6 301
Jun 13 2014 09:09:55.754 UTC: RADIUS: NAS-Port-Id [87] 5 "301"
Jun 13 2014 09:09:55.754 UTC: RADIUS: NAS-IP-Address [4] 6 172.16.254.116
Jun 13 2014 09:09:55.754 UTC: RADIUS: Nas-Identifier [32] 4 "ap"
Jun 13 2014 09:09:55.754 UTC: RADIUS(000000D0): Sending a IPv4 Radius Packet
Jun 13 2014 09:09:55.754 UTC: RADIUS(000000D0): Started 5 sec timeout
Jun 13 2014 09:09:55.758 UTC: RADIUS: Received from id 1645/32 172.16.0.32:1812, Access-Challenge, len 90
Jun 13 2014 09:09:55.758 UTC: RADIUS: authenticator 32 B7 0B BA 04 5D 6F C5 - B7 63 1A 6D CF 69 E7 50
Jun 13 2014 09:09:55.758 UTC: RADIUS: Session-Timeout [27] 6 30
Jun 13 2014 09:09:55.758 UTC: RADIUS: EAP-Message [79] 8
Jun 13 2014 09:09:55.758 UTC: RADIUS: 01 03 00 06 19 20 [ ]
Jun 13 2014 09:09:55.758 UTC: RADIUS: State [24] 38
Jun 13 2014 09:09:55.758 UTC: RADIUS: 1E 94 02 C3 00 00 01 37 00 01 02 00 AC 10 00 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 38 25 26 56 D2 [ 7 8?&V]
Jun 13 2014 09:09:55.758 UTC: RADIUS: Message-Authenticato[80] 18
Jun 13 2014 09:09:55.758 UTC: RADIUS: 9C A4 5C 09 68 3C 77 A4 1A 3A 73 6C CA A3 29 88 [ \h<w:sl)]
Jun 13 2014 09:09:55.758 UTC: RADIUS(000000D0): Received from id 1645/32
Jun 13 2014 09:09:55.758 UTC: RADIUS/DECODE: EAP-Message fragments, 6, total 6 bytes
Jun 13 2014 09:09:55.758 UTC: dot11_auth_dot1x_parse_aaa_resp: Received server response: GET_CHALLENGE_RESPONSE
Jun 13 2014 09:09:55.758 UTC: dot11_auth_dot1x_parse_aaa_resp: found session timeout 30 sec
Jun 13 2014 09:09:55.758 UTC: dot11_auth_dot1x_parse_aaa_resp: found eap pak in server response
Jun 13 2014 09:09:55.758 UTC: dot11_auth_dot1x_run_rfsm: Executing Action(SERVER_WAIT,SERVER_REPLY) for 001e.58a2.ba4b
Jun 13 2014 09:09:55.758 UTC: dot11_auth_dot1x_send_response_to_client: Forwarding server message to client 001e.58a2.ba4b
Jun 13 2014 09:09:55.762 UTC: dot11_auth_dot1x_send_response_to_client: Started timer client_timeout 30 seconds
Jun 13 2014 09:09:55.770 UTC: dot11_auth_parse_client_pak: Received EAPOL packet from 001e.58a2.ba4b
Jun 13 2014 09:09:55.770 UTC: dot11_auth_dot1x_run_rfsm: Executing Action(CLIENT_WAIT,CLIENT_REPLY) for 001e.58a2.ba4b
Jun 13 2014 09:09:55.770 UTC: dot11_auth_dot1x_send_response_to_server: Sending client 001e.58a2.ba4b data to server
Jun 13 2014 09:09:55.770 UTC: AAA/AUTHEN/PPP (000000D0): Pick method list 'eap_methods1'
Jun 13 2014 09:09:55.770 UTC: dot11_auth_dot1x_send_response_to_server: Started timer server_timeout 60 seconds
Jun 13 2014 09:09:55.770 UTC: RADIUS/ENCODE(000000D0):Orig. component type = DOT11
Jun 13 2014 09:09:55.770 UTC: RADIUS: AAA Unsupported Attr: ssid [347] 2
Jun 13 2014 09:09:55.770 UTC: RADIUS: AAA Unsupported Attr: service-type [345] 4 1
Jun 13 2014 09:09:55.770 UTC: RADIUS: AAA Unsupported Attr: interface [222] 3
Jun 13 2014 09:09:55.770 UTC: RADIUS: 33 [ 3]
Jun 13 2014 09:09:55.770 UTC: RADIUS(000000D0): Config NAS IP: 172.16.254.116
Jun 13 2014 09:09:55.770 UTC: RADIUS(000000D0): Config NAS IPv6:
Jun 13 2014 09:09:55.770 UTC: RADIUS/ENCODE(000000D0): acct_session_id: 197
Jun 13 2014 09:09:55.770 UTC: RADIUS(000000D0): Config NAS IP: 172.16.254.116
Jun 13 2014 09:09:55.770 UTC: RADIUS(000000D0): sending
Jun 13 2014 09:09:55.770 UTC: RADIUS(000000D0): Send Access-Request to 172.16.0.32:1812 id 1645/33, len 279
Jun 13 2014 09:09:55.770 UTC: RADIUS: authenticator 9C D8 E3 47 46 9C A3 8F - BE 1E 5F AF 42 CA 3C 70
Jun 13 2014 09:09:55.770 UTC: RADIUS: User-Name [1] 19 "Empresa\Roberto.Carlos"
Jun 13 2014 09:09:55.770 UTC: RADIUS: Framed-MTU [12] 6 1400
Jun 13 2014 09:09:55.770 UTC: RADIUS: Called-Station-Id [30] 22 "2C-3E-CF-0B-BF-60:1A"
Jun 13 2014 09:09:55.770 UTC: RADIUS: Calling-Station-Id [31] 16 "001e.58a2.ba4b"
Jun 13 2014 09:09:55.770 UTC: RADIUS: Service-Type [6] 6 Login [1]
Jun 13 2014 09:09:55.770 UTC: RADIUS: Message-Authenticato[80] 18
Jun 13 2014 09:09:55.770 UTC: RADIUS: 12 97 DB 9A 4E F2 6C 8A F2 69 FB 27 61 8D 95 9F [ Nli'a]
Jun 13 2014 09:09:55.770 UTC: RADIUS: EAP-Message [79] 107
Jun 13 2014 09:09:55.770 UTC: RADIUS: 02 03 00 69 19 80 00 00 00 5F 16 03 01 00 5A 01 00 00 56 03 01 53 9A E9 E5 2A 3B 9E C8 C1 69 42 EA C9 79 B6 2D 2B 4C 18 63 5D A3 DA B8 89 53 [i_ZVS*;iBy-+Lc]S]
Jun 13 2014 09:09:55.770 UTC: RADIUS: B8 8E C3 F7 79 03 00 00 18 00 2F 00 35 00 05 00 0A C0 13 C0 14 C0 09 C0 0A 00 32 00 38 00 13 00 04 01 00 00 15 FF 01 00 01 00 00 0A 00 06 00 04 00 17 00 18 00 0B 00 02 01 00 [ y/528]
Jun 13 2014 09:09:55.770 UTC: RADIUS: NAS-Port-Type [61] 6 802.11 wireless [19]
Jun 13 2014 09:09:55.770 UTC: RADIUS: NAS-Port [5] 6 301
Jun 13 2014 09:09:55.770 UTC: RADIUS: NAS-Port-Id [87] 5 "301"
Jun 13 2014 09:09:55.770 UTC: RADIUS: State [24] 38
Jun 13 2014 09:09:55.770 UTC: RADIUS: 1E 94 02 C3 00 00 01 37 00 01 02 00 AC 10 00 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 38 25 26 56 D2 [ 7 8?&V]
Jun 13 2014 09:09:55.770 UTC: RADIUS: NAS-IP-Address [4] 6 172.16.254.116
Jun 13 2014 09:09:55.770 UTC: RADIUS: Nas-Identifier [32] 4 "ap"
Jun 13 2014 09:09:55.770 UTC: RADIUS(000000D0): Sending a IPv4 Radius Packet
Jun 13 2014 09:09:55.770 UTC: RADIUS(000000D0): Started 5 sec timeout
Jun 13 2014 09:10:00.766 UTC: dot11_auth_parse_client_pak: Received EAPOL packet from 001e.58a2.ba4b
Jun 13 2014 09:10:00.766 UTC: dot11_auth_dot1x_run_rfsm: Executing Action(SERVER_WAIT,EAP_START) for 001e.58a2.ba4b
Jun 13 2014 09:10:00.766 UTC: dot11_auth_dot1x_ignore_event: Ignore event: do nothing
Jun 13 2014 09:10:00.794 UTC: RADIUS(000000D0): Request timed out
Jun 13 2014 09:10:00.794 UTC: RADIUS: Retransmit to (172.16.0.32:1812,1813) for id 1645/33
Jun 13 2014 09:10:00.794 UTC: RADIUS(000000D0): Started 5 sec timeout
Jun 13 2014 09:10:01.782 UTC: dot11_auth_parse_client_pak: Received EAPOL packet from 001e.58a2.ba4b
Jun 13 2014 09:10:01.782 UTC: dot11_auth_dot1x_run_rfsm: Executing Action(SERVER_WAIT,EAP_START) for 001e.58a2.ba4b
Jun 13 2014 09:10:01.782 UTC: dot11_auth_dot1x_ignore_event: Ignore event: do nothing
Jun 13 2014 09:10:02.794 UTC: dot11_auth_parse_client_pak: Received EAPOL packet from 001e.58a2.ba4b
Jun 13 2014 09:10:02.794 UTC: dot11_auth_dot1x_run_rfsm: Executing Action(SERVER_WAIT,EAP_START) for 001e.58a2.ba4b
Jun 13 2014 09:10:02.794 UTC: dot11_auth_dot1x_ignore_event: Ignore event: do nothing
Jun 13 2014 09:10:04.690 UTC: AAA/BIND(000000D1): Bind i/f
Jun 13 2014 09:10:04.690 UTC: dot11_auth_dot1x_start: in the dot11_auth_dot1x_start
Jun 13 2014 09:10:04.690 UTC: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 001e.58a2.ba4b
Jun 13 2014 09:10:04.690 UTC: dot11_auth_dot1x_send_id_req_to_client: Client 001e.58a2.ba4b timer started for 30 seconds
Jun 13 2014 09:10:05.146 UTC: RADIUS(000000D0): Request timed out
Jun 13 2014 09:10:05.146 UTC: RADIUS: Retransmit to (172.16.0.32:1812,1813) for id 1645/33
Jun 13 2014 09:10:05.146 UTC: RADIUS(000000D0): Started 5 sec timeout
Jun 13 2014 09:10:05.874 UTC: AAA/BIND(000000D2): Bind i/f
Jun 13 2014 09:10:05.874 UTC: dot11_auth_dot1x_start: in the dot11_auth_dot1x_start
Jun 13 2014 09:10:05.874 UTC: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 001e.58a2.ba4b
Jun 13 2014 09:10:05.874 UTC: dot11_auth_dot1x_send_id_req_to_client: Client 001e.58a2.ba4b timer started for 30 seconds
Jun 13 2014 09:10:05.922 UTC: dot11_auth_parse_client_pak: Received EAPOL packet from 001e.58a2.ba4b
Jun 13 2014 09:10:05.922 UTC: dot11_auth_dot1x_run_rfsm: Executing Action(CLIENT_WAIT,EAP_START) for 001e.58a2.ba4b
Jun 13 2014 09:10:05.922 UTC: dot11_auth_dot1x_send_id_req_to_client: Sending identity request to 001e.58a2.ba4b
Jun 13 2014 09:10:05.922 UTC: dot11_auth_dot1x_send_id_req_to_client: Client 001e.58a2.ba4b timer started for 30 seconds
Jun 13 2014 09:10:09.818 UTC: RADIUS(000000D0): Request timed out
Jun 13 2014 09:10:09.818 UTC: RADIUS: Retransmit to (172.16.0.32:1812,1813) for id 1645/33
Jun 13 2014 09:10:09.818 UTC: RADIUS(000000D0): Started 5 sec timeout
Jun 13 2014 09:10:14.746 UTC: RADIUS(000000D0): Request timed out
Jun 13 2014 09:10:14.746 UTC: RADIUS: Retransmit to (172.16.0.32:1812,1813) for id 1645/33
Jun 13 2014 09:10:14.746 UTC: RADIUS(000000D0): Started 5 sec timeout
Jun 13 2014 09:10:19.034 UTC: RADIUS(000000D0): Request timed out
Jun 13 2014 09:10:19.034 UTC: RADIUS: Fail-over denied to (172.16.0.32:1812,1813) for id 1645/33
Jun 13 2014 09:10:19.034 UTC: RADIUS: No response from (172.16.0.32:1812,1813) for id 1645/33
Jun 13 2014 09:10:19.034 UTC: RADIUS/DECODE: No response from radius-server; parse response; FAIL
Jun 13 2014 09:10:19.034 UTC: RADIUS/DECODE: Case error(no response/ bad packet/ op decode);parse response; FAIL -
Cisco aironet 2600 series AP configuration with windows 2008 R2 Radius server.
I want to know the configuration of Cisco aironet 2600 series AP with windows 2008 R2 Radius server.
I have
1. AD & DHCP Server
2. Cisco Aironet 2600 Access Point.
I want to connect wifi devices through this AP. Authentication should be through Radius server and AD.Hi ,
Below link should support your requirement
http://www.cisco.com/c/en/us/support/docs/wireless-mobility/wireless-lan-wlan/116584-configure-wirelesslan-00.html
Minimal command : -
AP(config)# aaa new-model
AP(config)# radius-server host 172.20.0.1 auth-port 1645 acct-port 1645 key XXXXXX
AP(config)# radius-server deadtime 10
HTH
Sandy -
Cisco 2500 controller with aironet 1600 access point
Hi,
This my first wireless project, and I have a few questions about the installation :
1- some of the access point will be installed in branch offices, connected to the controller through the main MPLS netwrok ( is that possible).
2- If for any reason the connectivity between the AP and the controller get disconnected what will happend to the users connected to the access point.
3- can I have two vlan on the Aironet 1600, the first one to be connected to the controller through the MPLS netwrok and the second for users to public internet.(internet break out).
Thanks,Yes that setup will work. What the others are trying to explain is authentication if your WAN goes down. If your AP's are setup for FlexConnect and you are indeed using AP groups, (using 802.1x) you need to have a radius server and a backup AD sever to allow for authentication to still happen if the WAN goes down. If you have resources centralized, then when the WAN goes down, everything else goes down and no new authentications will take place and any re-authentications will fail with 802.1x.
Take a look at these links
http://www.cisco.com/en/US/docs/wireless/controller/7.2/configuration/guide/cg_flexconnect.html
http://www.cisco.com/en/US/docs/wireless/controller/7.4/configuration/guides/flexconnect/config_flexconnect_chapter_011.html
Sent from Cisco Technical Support iPhone App -
Aironet 1600 works only guest SSID
Hi there,
I'm trying to configure an Aironet 1600 for using two SSID, one in guest mode and one hidden.
The first SSID (guest) works fine, but the hidden not. I've the same configuration on some Aironet 1200 and works fine. I've already updated the software at the latest (15.2(4)JB4) version but did not change the issue.
Can anyone help me?
Thanks
Fabio
here is the configuration:
version 15.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
hostname XXXXXXXX
logging rate-limit console 9
enable secret 5 XXXXXXXX
enable password 7 XXXXXXXX
no aaa new-model
clock timezone +0400 4 0
no ip cef
dot11 syslog
dot11 ssid SSID1
vlan 1
authentication open
authentication key-management wpa
wpa-psk ascii 7 XXXXXXXX
dot11 ssid SSID2
vlan 2
authentication open
authentication key-management wpa
guest-mode
wpa-psk ascii 7 XXXXXXXX
dot11 guest
power inline negotiation prestandard source
username vpap privilege 15 password 7 XXXXXXXX
bridge irb
interface Dot11Radio0
no ip address
no ip route-cache
encryption mode ciphers aes-ccm tkip
encryption vlan 2 mode ciphers aes-ccm tkip
encryption vlan 1 mode ciphers aes-ccm tkip
ssid SSID1
ssid SSID2
antenna gain 0
stbc
beamform ofdm
station-role root access-point fallback shutdown
interface Dot11Radio0.1
encapsulation dot1Q 1 native
no ip route-cache
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
interface Dot11Radio0.2
encapsulation dot1Q 2
no ip route-cache
bridge-group 2
bridge-group 2 subscriber-loop-control
bridge-group 2 spanning-disabled
bridge-group 2 block-unknown-source
no bridge-group 2 source-learning
no bridge-group 2 unicast-flooding
interface Dot11Radio1
no ip address
no ip route-cache
shutdown
antenna gain 0
peakdetect
no dfs band block
channel dfs
station-role root
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
interface GigabitEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
interface GigabitEthernet0.1
encapsulation dot1Q 1 native
no ip route-cache
bridge-group 1
bridge-group 1 spanning-disabled
no bridge-group 1 source-learning
interface GigabitEthernet0.2
encapsulation dot1Q 2
no ip route-cache
bridge-group 2
bridge-group 2 spanning-disabled
no bridge-group 2 source-learning
interface BVI1
ip address X.X.X.X 255.255.255.0
no ip route-cache
ip default-gateway X.X.X.X
ip forward-protocol nd
ip http server
no ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
bridge 1 route ip
line con 0
line vty 0 4
login local
transport input all
sntp server X.X.X.X
sntp server X.X.X.X
endFisrt of all you are creating more then one ssid then u must use : mbssid guest-mode
add these commands on your config
dot11 ssid SSID1
mbssid guest-mode
dot11 ssid SSID2
mbssid guest-mode
guest-mode
int dot11radio0
mbssid
Try this and let me know if it works. and they you can try to hide ssid and test again.
Regards -
Dear all, is the Aironet 1600 compatible with the old power supply of 1231 or 1242 APs?
If your talking about the AC power plug... Yeah it does work. I use then still have a bunch of those to test the newer AP's when there is no PoE switch. I have one old power injector that works also that I haven't thrown away:). Some of my customers still use both in there environment since they would upgrade their AP's but not their switches (no PoE).
Sent from Cisco Technical Support iPhone App -
Cisco Aironet 3602I is stand alone or need a controller ????..
Hello,
Can any help me with this questions ?...thanks you.
Cisco Aironet 3602I is stand alone or need a controller ????..
David Chavarriain General APs can be converted to work with autonomous (standalone) image or an LWAPP/CAPWAP image that needs controller.
for 3600 series APs however there are no support for autonomous image and you can only use it on WLC with version 7.2 or above (7.0 does not work).
7.2 version does not work on all WLC platforms and only works on new platforms like WiSM2 and 2500 WLCs.
I think everyone above mentioned what I wrote but I just tries ot make a good summary.
HTH
Amjad -
How to change default admin password on Cisco Aironet 1040
How do I change the default username and password on the Cisco Aironet 1040. There is a default set and I want to change that to secure the device. I've checked the manual and can't seem to find the directions. Any ideas?
Hi Brian,
If this AP is already registered with a WLC then you can change it via WLC.
In WLC GUI, go to Wireless -> Select the AP -> Credential -> Override Global Credential-> Update username/pw/enable pw
In WLC CLI, you can configure it like this. If it is for all APs, then select all, otherwise AP name.
(WLC3) >config ap mgmtuser add username admin password Cisco123 secret Cisco123 ?
all Applies the configuration to every AP that does not have a specific user name.
Enter the name of the Cisco AP.
(WLC3) >config ap mgmtuser add username password secret
(WLC3) >save config
Are you sure you want to save? (y/n) y
If it is Autonomous AP you can configure using the "username xxxx password xxx" IOS command
HTH
Rasika
*** Pls rate all useful responses **** -
How many users are supported on a Cisco Aironet 1141N? 30?
I have a client that wants to upgrade his Aironet 1131 APs with 1141N. How many users are supported on a Cisco Aironet 1141N?
Yes, you could have 30 clients on the AP.
Client density all depends on what the client is doing, really.
So if you have clients that are just web surfing and pulling email 30+ isn't a problem. If they are all streaming video, then you want to plan for less clients per AP, and more APs.
Steve -
How to load a boot image to cisco aironet 1140 series after missing boot image
Hi all,
I need a solution for this. When i switch my cisco aironet 1140 , it s blinking with red light .and gives a message "no boot image to load".
When i tried next time, by pressing escape it shows this message that i have mentioned below.
ap:
ap:
using eeprom values
WRDTR,CLKTR: 0x83000800 0x40000000
RQDC ,RFDC : 0x80000035 0x00000208
using ÿÿÿÿ ddr static values from serial eeprom
ddr init done
Running Normal Memtest...
Passed.
IOS Bootloader - Starting system.
FLASH CHIP: Numonyx P33
Checking for Over Erased blocks
Xmodem file system is available.
DDR values used from system serial eeprom.
WRDTR,CLKTR: 0x83000800, 0x40000000
RQDC, RFDC : 0x80000035, 0x00000208
PCIE0: link is up.
PCIE0: VC0 is active
PCIE1: link is NOT up.
PCIE1 port 1 not initialized
PCIEx: initialization done
flashfs[0]: 1 files, 1 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 32385024
flashfs[0]: Bytes used: 1536
flashfs[0]: Bytes available: 32383488
flashfs[0]: flashfs fsck took 16 seconds.
Reading cookie from system serial eeprom...Done
Base Ethernet MAC address: 28:94:0f:d6:c8:62
Ethernet speed is 100 Mb - FULL duplex
The system is unable to boot automatically because there
are no bootable files.
C1140 Boot Loader (C1140-BOOT-M) Version 12.4(23c)JA3, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Compiled Tue 18-Oct-11 14:51 by prod_rel_team
ap:
So , now my question is how to load the boot image ? From where will we get this ? OR
I m also having another Cisco aironet 1140 , Can i get bootimage from that . Kindly let me know the solution from genius ?Take a look at this link as it should have the info you need
https://supportforums.cisco.com/docs/DOC-14636
Sent from Cisco Technical Support iPhone App -
Hello, I have 2 Cisco Aironet 1300 Bridges which provide data and voice communication between 2 buildings. Up until recently QoS has not been needed, but lately there appears to be congestion due to reports of poor voice quality. Building A houses a V3000 NBX Telephone system, Building B houses approximately 30 remote IP phones. Building A and Building B are approximately 100 yards apart. No VLAN's. Due to myself being an extreme noob to Cisco bridges, I was hoping some of you may have had experience in setting this up and hopefully provide some tips. I need to prioritize traffic on UDP ports 2093-2096 and TCP port 1040. Thank you in advance for any suggestions. My current running config is below:
Using 1283 out of 32768 bytes
version 12.3
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
hostname LHS-WeightRoom-WCV
ip subnet-zero
aaa new-model
aaa authentication login default local
aaa authorization exec default local
aaa session-id common
dot11 ssid wcv
authentication open
guest-mode
dot11 ssid wcvcisco
authentication open
infrastructure-ssid optional
username root privilege 15 password 7 0247335A05320A2244
username Cisco privilege 15 password 7 074E164D403D1C061F
bridge irb
interface Dot11Radio0
no ip address
no ip route-cache
ssid wcv
ssid wcvcisco
speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0
54.0
station-role root bridge
bridge-group 1
bridge-group 1 spanning-disabled
interface FastEthernet0
no ip address
no ip route-cache
bridge-group 1
bridge-group 1 spanning-disabled
hold-queue 80 in
interface BVI1
ip address 10.141.8.6 255.255.254.0
no ip route-cache
ip default-gateway 10.141.8.5
ip http server
ip http authentication aaa
no ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
control-plane
bridge 1 route ip
line con 0
line vty 0 4
endHere is the URL for the configuration of Cisco Aironet 1300 QoS. Follow the guide it may help you
http://www.cisco.com/en/US/docs/wireless/access_point/1300/12.3_4_JA/configuration/guide/o13qos.html -
Hello,good day problem with Cisco aironet 1040 series acces point
Hello good day to all, how to configure cisco aironet 1040 series using web configuration attaching through patch cord without using the console.
if possible please send me step by step instruction, any help is gladly appreciated.
thank you in advance, More power
melhelo good day sir,
this is the first time i configure this device i am using Cisco aironet 1040 for our wireless using POE for power, and using cisco catalyst 2960 as switch
i jack the patch cord in and its goes on colored green,
the thing is how i can configure the aironet 1040 sir?
waiting for a step by step instruction,
thank you in advance
mel
Maybe you are looking for
-
No service after update to 6.1 on my iPhone 5
After updating to iOS 6.1, I can't get service anymore. It comes and goes. My battery went down 40% in an hour. GPS can't get a precise location. Phone is practically unusable! I tried resetting network settings, and then restoring the iPhone, but no
-
Where can i download the macbookpro drivers for windows 7.
, i know that in boot camp i can get it on a DVD, but i doen't have one. My friend said that in the macbook box, was supposed have a dvd with the drivers, but i didn't find it.
-
I have recently changed from Windows 7 desktop to a new iMac running Mavericks. I have chosen a wired keyboard as I like the usual Delete key function. I cannot find out how to select several items which are not next to each other (e.g. words in Pa
-
Table for Exchnage Rate Maintenance
Dear Experts, I am posting a Foreign Currency Document. The Foreign currency for me is Eur. In the Header of the document, I do mentioned Currency Eur with rate 70.55 the system then gives a message, rate 70.55 deviates @59% of the table rate 44.17 I
-
Outlook email account disappeared after restarting
Today my husband shutdown and restarted his Mac Pro as it was running slow and he hadn't turned it off for a few days. When he reopened Microsoft Outlook the entire email account was gone. He tried going back into Time Capsule to last night but nothi