×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

Rare, but weird AnyConnect problem

Unanswered Question
Oct 17th, 2014
User Badges:
  • Bronze, 100 points or more

Hey folks!

I have the following setup:

Laptop connects to wireless via WLC using Cisco Anyconnect client.  (WPA2 Enterprise AES,  with 802.1x configuration password/EAP-FAST)

WLC authenticates user ID via ACS.

ACS queries AD for user ID and passes or fails.

 

Occasionally, we have a user that cannot login, no matter what laptop he/she uses.

ACS failed attempts log shows the following:

EAP-FAST user was provisioned with new PAC

The only fix we've found is to create a new instance of the same SSID and have them login using that.

Once they trust the server cert, they can login to any laptop.

I assume it's because they "accidentally" chose to not trust the server certificate.  They always tell me they didn't do it  :)~

My question is this.  Why does that "accident" follow them from laptop to laptop?

Also, is there an easier fix than having them create an entirely new wireless connection in the AnyConnect client?

 

Thanks!

 

Ven

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Actions

This Discussion

 

 

Trending Topics: Other Wireless Mobility

client could not be authenticated
Network Analysis Module (NAM) Products
Cisco 6500 nam
reason 440 driver failure
Cisco password cracker
Cisco Wireless mode