09-19-2007 04:48 AM - edited 07-03-2021 02:38 PM
Cannot associate 7921g with 851W with LEAP autentfication. When set autentification to Open - all is ok.
Config from 851w below:
aaa new-model
aaa group server radius rad_eap
server 172.16.1.100 auth-port 1812 acct-port 1813
!
aaa authentication login eap_methods group rad_eap
dot11 ssid NOC
authentication open eap eap_methods
authentication network-eap eap_methods
interface Dot11Radio0
no ip address
!
ssid NOC
!
speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
station-role root
bridge-group 1
!
interface BVI1
ip address 172.16.1.100 255.255.0.0
!
radius-server local
nas 172.16.1.100 key 0 Cisco
user 1 nthash 0 69943C5E63B4D2C104DBBCC15138B72B
!
radius-server host 172.16.1.100 auth-port 1812 acct-port 1813 key Cisco
--------
In 7921g Security mode set to LEAP at EAS-FAST - the same result. Message on phone - authenitcation failed and nothing in logs at 851 with
debug dot11 aaa dot1x all
debug radius authentication
debug radius local-server client
debug radius local-server packets
On 1100 aironet - the same.
Can you help me?
09-25-2007 07:09 AM
Add the statement encryption mode wep mandatory in the global command in the router. Because should have the encrytpion defined. But specifying the key is not mandatory. So you can skip the transmit key statement . This should be done for each Vlan you add.
09-26-2007 12:09 AM
encryption mode wep mandatory - exist only at interface parameters, I've add it but nothing happens.
Exist any way to see debuggin information about errors due wireless negotiation/autentication?
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: