02-07-2014 03:03 AM - edited 07-05-2021 12:07 AM
Hello All,,
While Samsung s4,Nexus5 (latest models) users connecting to the network, they get "Authentication Error Occured" error. Wlc code is 7.5. Can i get any solution...?
Thanks in advance.
02-07-2014 03:07 AM
Need more info. Can you post your show WLAN
Is the issue with only these devices? Have you tested with an open SSID and do these still have issues? You don't have both WPA/TKIP and WPA2/AES configured together or a mix and match?
Sent from Cisco Technical Support iPhone App
02-07-2014 03:18 AM
(Cisco Controller) >show wlan 1
WLAN Identifier.................................. 1
Profile Name..................................... XXXX, Inc. (Staff)
Network Name (SSID).............................. XXXX, Inc. (Staff)
Status........................................... Enabled
MAC Filtering.................................... Disabled
Broadcast SSID................................... Enabled
AAA Policy Override.............................. Enabled
Network Admission Control
Client Profiling Status
Radius Profiling ............................ Disabled
DHCP ....................................... Disabled
HTTP ....................................... Disabled
Local Profiling ............................. Disabled
DHCP ....................................... Disabled
HTTP ....................................... Disabled
Radius-NAC State............................... Disabled
SNMP-NAC State................................. Disabled
Quarantine VLAN................................ 0
Maximum number of Associated Clients............. 0
Maximum number of Clients per AP Radio........... 200
--More-- or (q)uit
Number of Active Clients......................... 488
Exclusionlist Timeout............................ 60 seconds
Session Timeout.................................. 36000 seconds
User Idle Timeout................................ 18000 seconds
Sleep Client..................................... disable
Sleep Client Timeout............................. 12 hours
User Idle Threshold.............................. 0 Bytes
NAS-identifier................................... controller
CHD per WLAN..................................... Enabled
Webauth DHCP exclusion........................... Disabled
Interface........................................ management
Multicast Interface.............................. Not Configured
WLAN IPv4 ACL.................................... unconfigured
WLAN IPv6 ACL.................................... unconfigured
WLAN Layer2 ACL.................................. unconfigured
mDNS Status...................................... Enabled
mDNS Profile Name................................ default-mdns-profile
DHCP Server...................................... Default
DHCP Address Assignment Required................. Disabled
Static IP client tunneling....................... Disabled
PMIPv6 Mobility Type............................. none
PMIPv6 MAG Profile........................... Unconfigured
PMIPv6 Default Realm......................... Unconfigured
--More-- or (q)uit
PMIPv6 NAI Type.............................. Hexadecimal
Quality of Service............................... Silver
Per-SSID Rate Limits............................. Upstream Downstream
Average Data Rate................................ 0 0
Average Realtime Data Rate....................... 0 0
Burst Data Rate.................................. 0 0
Burst Realtime Data Rate......................... 0 0
Per-Client Rate Limits........................... Upstream Downstream
Average Data Rate................................ 0 0
Average Realtime Data Rate....................... 0 0
Burst Data Rate.................................. 0 0
Burst Realtime Data Rate......................... 0 0
Scan Defer Priority.............................. 4,5,6
Scan Defer Time.................................. 100 milliseconds
WMM.............................................. Allowed
WMM UAPSD Compliant Client Support............... Disabled
Media Stream Multicast-direct.................... Disabled
CCX - AironetIe Support.......................... Enabled
CCX - Gratuitous ProbeResponse (GPR)............. Disabled
CCX - Diagnostics Channel Capability............. Disabled
Dot11-Phone Mode (7920).......................... Disabled
Wired Protocol................................... None
Passive Client Feature........................... Disabled
--More-- or (q)uit
Peer-to-Peer Blocking Action..................... Drop
Radio Policy..................................... All
DTIM period for 802.11a radio.................... 1
DTIM period for 802.11b radio.................... 1
Radius Servers
Authentication................................ Disabled
Accounting.................................... Disabled
Dynamic Interface............................. Disabled
Dynamic Interface Priority.................... wlan
Local EAP Authentication......................... Disabled
Security
802.11 Authentication:........................ Open System
FT Support.................................... Disabled
Static WEP Keys............................... Disabled
802.1X........................................ Disabled
Wi-Fi Protected Access (WPA/WPA2)............. Disabled
WAPI.......................................... Disabled
Wi-Fi Direct policy configured................ Disabled
EAP-Passthrough............................... Disabled
CKIP ......................................... Disabled
Web Based Authentication...................... Enabled
IPv4 ACL........................................ Unconfigured
--More-- or (q)uit
IPv6 ACL........................................ Unconfigured
Web-Auth Flex ACL............................... Unconfigured
Web Authentication server precedence:
1............................................... local
2............................................... radius
3............................................... ldap
Web-Passthrough............................... Disabled
Conditional Web Redirect...................... Disabled
Splash-Page Web Redirect...................... Disabled
Auto Anchor................................... Enabled
FlexConnect Local Switching................... Disabled
flexconnect Central Dhcp Flag................. Disabled
flexconnect nat-pat Flag...................... Disabled
flexconnect Dns Override Flag................. Disabled
flexconnect PPPoE pass-through................ Disabled
flexconnect local-switching IP-source-guar.... Disabled
FlexConnect Vlan based Central Switching ..... Disabled
FlexConnect Local Authentication.............. Disabled
FlexConnect Learn IP Address.................. Enabled
Client MFP.................................... Optional but inactive (WPA2 not configured)
PMF........................................... Disabled
PMF Association Comeback Time................. 1
PMF SA Query RetryTimeout..................... 200
--More-- or (q)uit
Tkip MIC Countermeasure Hold-down Timer....... 60
AVC Visibilty.................................... Disabled
AVC Profile Name................................. None
Flow Monitor Name................................ None
Split Tunnel (Printers).......................... Disabled
Call Snooping.................................... Disabled
Roamed Call Re-Anchor Policy..................... Disabled
SIP CAC Fail Send-486-Busy Policy................ Enabled
SIP CAC Fail Send Dis-Association Policy......... Disabled
KTS based CAC Policy............................. Disabled
Assisted Roaming Prediction Optimization......... Disabled
802.11k Neighbor List............................ Disabled
802.11k Neighbor List Dual Band.................. Disabled
Band Select...................................... Disabled
Load Balancing................................... Disabled
Multicast Buffer................................. Disabled
Mobility Anchor List
WLAN ID IP Address Status
------- --------------- ------
1 X.X.X.X Up
02-07-2014 03:21 AM
1) Only with these mobiles.
2) Security --- L3 Webauth
3) Anchor - Foriegn design
02-07-2014 03:12 AM
Do share the logs and configuration
02-07-2014 04:04 AM
Team,
I observed new thing now. When i connect to 802.11an, it(samsung S4) works. But if i connect as 802.11ac, it doesnt work.
We have 3600 ap's with ac module enabled.
Quick help really appreciated.
02-07-2014 04:22 AM
Hi Prasan,
You can try these.
1. Tried different channels
2. Disabled WiFi Power Save Mode on GS4
3. After doing first 2 steps then Go near to AP and the try again.
Hope it helps.
Reagrds
Dont forget to arte helpful posts
02-07-2014 04:29 AM
Thanks for the reply. Power save is disabled. I was on channel 36.
GS4 is not connecting to any channel on 802.11ac. same error "Authentication Error Occured"
02-07-2014 04:36 AM
did you disable the BLUETOOTH in S4 ?
Aslo check encryption: Either use WPA2/aes or WPA/Tkip
is still not works then try to crae a new wlan woth open auth and then try again.
Regards
02-07-2014 05:49 AM
Tried above steps, still same error.
We use simple L3 web auth only.
02-07-2014 05:55 AM
Don't set the idle timer that high. Drop it down to 7200 or 14400. Also for session timer for guest I would disable. Now this is for guest, so I typically set the WLAN to 802.11bg only policy. Why let guest take all your bandwidth.
Also, I'm working with the BU on another issue with v7.6 and the 3600's. If your loosing layer 2, then your probably hitting the same issue. My devices can connect, but eventually layer 2 breaks.
Sent from Cisco Technical Support iPhone App
02-07-2014 05:59 AM
HI Prasan,
I dont know whcih kind of issue you are facing now:
Check this :
http://www.cisco.com/en/US/docs/wireless/controller/release/notes/crn75.html#wp1030058
May you will see any open caveats for open auth.
Reagrds
02-07-2014 07:07 AM
It seems like you already pinpointed the issue. You should open a TAC case for that and I would disable AC for that wlan for now to prevent users from complaining. Let TAC figure out if its an issue on their end or they point it back to the phone vendor.
Thanks,
Scott
*****Help out other by using the rating system and marking answered questions as "Answered"*****
02-07-2014 07:30 AM
Just an FYI.... v7.5 along with others just got deferred. Meaning the code is no longer supported.
Thanks,
Scott
*****Help out other by using the rating system and marking answered questions as "Answered"*****
02-10-2014 09:07 PM
Can i upgrade it to 7.6 ?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide