i asked a wireless cisco engineer and he told me that this setting is ok.

This is the way i have it setup:

Authentication

10.138.10.26 1812 enable

10.138.15.129 1812 enable

accounting

10.138.10.26 1813 enable

10.138.15.129 1813 enable

Is it ok for both server to have the same port number ??

THank you

Vic

So you have 2 servers that do auth & acct, I notice that the error has a different ip address of 192.168.100.219. Your radius is working fine because the .26 & .129 servers are handling it. Where is 192.168.100.219

Whether your clients are authenticating properly???

This message comes from a different IP address which is not configured on your controller. Even i observed like it is coming on port 1813 which is normally used for accounting so your client authentication wont interrupted.

Can you check the o/p of debug command

"debug aaa events enable" this will give you a perfect idea of wht is happening

Sorry about that but my colleague didn't put the real ip address and he just enter a bogus one for the first posting but for the last post those are the real ones.

thank you

Vic

So are you getting the error message for both radius servers then? if not, would start looking at the suspect radius server and/or network path between the source & destination

Are you seeing any errors on the radius server logs. It can be an issue with the shared secret. Do you see the error pointing to both radius servers or just one. If you see this on both, you shouldn't have any users connecting. Verify the shared secret and if you are using a 63 characters, then enter the shared secret on the cli of the WLC.