About 7921G too

Unanswered Question
Sep 19th, 2007
User Badges:

Cannot associate 7921g with 851W with LEAP autentfication. When set autentification to Open - all is ok.


Config from 851w below:


aaa new-model

aaa group server radius rad_eap

server 172.16.1.100 auth-port 1812 acct-port 1813

!

aaa authentication login eap_methods group rad_eap

dot11 ssid NOC

authentication open eap eap_methods

authentication network-eap eap_methods


interface Dot11Radio0

no ip address

!

ssid NOC

!

speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0

station-role root

bridge-group 1

!

interface BVI1

ip address 172.16.1.100 255.255.0.0

!

radius-server local

nas 172.16.1.100 key 0 Cisco

user 1 nthash 0 69943C5E63B4D2C104DBBCC15138B72B

!

radius-server host 172.16.1.100 auth-port 1812 acct-port 1813 key Cisco


--------

In 7921g Security mode set to LEAP at EAS-FAST - the same result. Message on phone - authenitcation failed and nothing in logs at 851 with

debug dot11 aaa dot1x all

debug radius authentication

debug radius local-server client

debug radius local-server packets


On 1100 aironet - the same.


Can you help me?



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
irisrios Tue, 09/25/2007 - 07:09
User Badges:
  • Silver, 250 points or more

Add the statement encryption mode wep mandatory in the global command in the router. Because should have the encrytpion defined. But specifying the key is not mandatory. So you can skip the transmit key statement . This should be done for each Vlan you add.

_TDHster_ Wed, 09/26/2007 - 00:09
User Badges:

encryption mode wep mandatory - exist only at interface parameters, I've add it but nothing happens.

Exist any way to see debuggin information about errors due wireless negotiation/autentication?

Actions

This Discussion