Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1193
Views
0
Helpful
3
Replies

User re-authentication on same AP/different APs before the session/idle timeout

Qing Yu
Level 1
Level 1

‎09-19-2010 04:59 PM - edited ‎07-03-2021 07:11 PM

I am facing an issue which user needs to re-authenticate before the session/idle timeout.

Here are the information

WLCx1

  • Model - 4402
  • Software Version - 6.0.196.0
  • Emergency Image Version - 5.2.157.0

APx30

  • Model - 1252AG
  • Boot Version 12.4.10.0
  • IOS Version 12.4(21a)JHA

Time-out settings

  • Session Time-out :43200
  • Idle Time-out: 43200

Trap Log

Mon Sep 20 09:36:46 2010  User Username 1 logged in. Client MAC:00:21:63:bf:d3:d7, Client IP:10.90.224.19, AP MAC:00:22:90:5e:79:60, AP Name:AP0022.905d.70d4 

Mon Sep 20 08:41:45 2010  User Username 1 logged in. Client MAC:00:21:63:bf:d3:d7, Client IP:10.90.224.19, AP MAC:00:23:04:c9:58:b0, AP Name:AP0023.04b9.039a
Mon Sep 20 08:35:32 2010  User Username 1 logged in. Client MAC:00:21:63:bf:d3:d7, Client IP:10.90.224.19, AP MAC:00:23:04:c9:58:b0, AP Name:AP0023.04b9.039a

Note: I replaced the real user name with  "Username 1"

The reauthetication issue happened on the same AP as well as different APs.

I've tried different software versions from V4 to V6 and the same problem happens.

Please let me know your suggestions.

Thanks

Qing Yu

Labels:
0 Helpful
3 Replies 3

Stephen Rodriguez
Cisco Employee
Cisco Employee

‎09-20-2010 09:44 AM

You'd have to run debug client to see what is going on.  99.9999% when the client is reauthing on a roam, it has to do with the keying method, on the supplicant.

HTH,
Steve

------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered
0 Helpful

Qing Yu
Level 1
Level 1
In response to Stephen Rodriguez

‎09-20-2010 04:19 PM

Thanks Stephen,

I've turned on the client debug with the following debug flags enabled:

dhcp packet enabled.
  dot11 mobile enabled.
  dot11 state enabled
  dot1x events enabled.
  dot1x states enabled.
  mobility handoff enabled.
  pem events enabled.
  pem state enabled.
  CCKM client debug enabled.

I received the message  "No Mobility groupcast sent, member count 0" right after I turned on mobility handoff enabled flag.

There are no other debug messages available yet.

Qing Yu

0 Helpful

Vinay Sharma
Level 7
Level 7

‎09-25-2011 10:50 AM

Hello Qing,

Please mark the Question as Answered, if the provided information is correct and it helped. By doing that others can take benefit as well.

Thanks,

Vinay Sharma

Community Manager – Wireless

Thanks & Regards
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card