How to keep Network Connections Open after a WinXP logoff VIA 80211

Unanswered Question
Oct 11th, 2011
User Badges:

Hello I'm currentlly running Both Wired and Wireless GPO via Win2008r2, on my WIRED connections after clt-alt-del logoff my network connection stays open (pingable)

While connected via wireless (WLC 5508 and WCS) Windows AD 2008r2 ;Radius Server 2003.

All Clients authenticate using Network Authen (Wireless Network Connection Properties)  WPA2 Data encryp AES  EAP type PEAP

Authentication Method (EAP-MSCHAP) I have no problems connecting via SSID etc... my Question is how do I keep the TCP connection open after initiating a logoff from Windows. (Closing network connection) OPEN!  

I need to maintain a tcp(pingable) connection open in order to access Manufacturing clients that are connected via WIFI. (WLC).

All wireless clients are issued and auto-enrollment cert via IAS .

Thanx U

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Stephen Rodriguez Tue, 10/11/2011 - 12:16
User Badges:
  • Purple, 4500 points or more


     To make sure I'm reading this correctly.  User logs in to wireless from  You are able to ping this device.

     Now, user logs off, and you are no longer able to ping   But you want them to still be able to ping it.

Is that correct?

If so, does the client device support machine authentication, or just user authentication?  To keep the IP address and be on the network, the device would need to support machine authentication, so that it can log back in, after the user has logged off.




Please remember to rate helpful posts or to mark the question as answered so that it can be found later.

Byron Ridgeway Tue, 10/11/2011 - 12:23
User Badges:

Authenticate as Computer when Computer information is Avail. (Wireless properties)

Byron Ridgeway Tue, 10/11/2011 - 12:25
User Badges:

The user has no problems logging back on.. It’s the machines that are I remote into –via VNC but cannot because network connection is closed.

I have to send a Tech out just to log back in the machine will connect

Stephen Rodriguez Tue, 10/11/2011 - 12:52
User Badges:
  • Purple, 4500 points or more

what are you using for the AAA, and are the devices joined to the domain?

Stephen Rodriguez Tue, 10/11/2011 - 13:14
User Badges:
  • Purple, 4500 points or more

in the profile on IAS, do you have the OU that the machines are in in the allowed list?

Byron Ridgeway Tue, 10/11/2011 - 13:49
User Badges:

Yes they are listed under AD Domains and Trusts in the Radius server supporting (IAS)

Do you mind if I send a few attachments im not sure who all is viewing but it contains my Directory structure

Byron Ridgeway Mon, 10/24/2011 - 22:06
User Badges:

Sorry for the delay I did resolve the issue by adding computer authentacation at the AAA(Radius GPO)..

But you were correct, by allowing the machine to authenticate with local cert stored on machine I was able to keep icmp going.

I was putting to much thought  by modifying  my wireless GPO.   Under my OU.



This Discussion

Related Content



Trending Topics: Other Wireless Mobility

client could not be authenticated
Network Analysis Module (NAM) Products
Cisco 6500 nam
reason 440 driver failure
Cisco password cracker
Cisco Wireless mode