Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

Mobile based clients disconnecting frequently

Hi folks,

I have an 1142 running 15.2.2JB.  I noticed numerous messages of clients disconnecting with the following message:

%DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 847a.885b.622c Reason: Previous authentication no longer valid

The MAC addresses involved are all associated to various mobile devices...iPad, iPhone, Windows 8 Mobile and Android (MAC above is an Android phone).  This doesn't appear to impact PC's and laptops (both Windows an Apple).

The devices reconnect immediately and this doesn't appear to cause any problems with anything other than Android devices which register the disconnect immediately and therefore bin anything they're currently doing (for some reason the Windows 8 Mobile and Apple devices seem to be able to cope with the disconnect and reconnect and don't ditch anything network connections)

Config on the AP is:

dot11 ssid Frozen

   authentication open

   authentication key-management wpa version 2

   wpa-psk ascii 7 05261F303645480C260816190E1F3B3D242A2C362724060B2900005D5C4B12

!

dot11 ssid FrozenSlow

   authentication open

   authentication key-management wpa version 2

   wpa-psk ascii 7 1124003A001B0D093B272A2F2D200A351C09120613504C546C570F081D0518

!

interface Dot11Radio0

no ip address

!

encryption mode ciphers aes-ccm

!

ssid FrozenSlow

!

antenna gain 0

speed  basic-1.0 2.0 5.5 11.0 6.0 9.0 12.0 18.0 24.0 36.0 48.0 54.0 m0. m1. m2. m3. m4. m5. m6. m7. m8. m9. m10. m11. m12. m13. m14. m15.

channel 2462

station-role root

no dot11 extension aironet

no cdp enable

bridge-group 1

bridge-group 1 subscriber-loop-control

bridge-group 1 spanning-disabled

bridge-group 1 block-unknown-source

no bridge-group 1 source-learning

no bridge-group 1 unicast-flooding

!

interface Dot11Radio1

no ip address

!

encryption mode ciphers aes-ccm

!

ssid Frozen

!

antenna gain 0

no dfs band block

speed  6.0 9.0 basic-12.0 18.0 24.0 36.0 48.0 54.0 m0. m1. m2. m3. m4. m5. m6. m7. m8. m9. m10. m11. m12. m13. m14. m15.

channel width 40-above

channel dfs

station-role root

no dot11 extension aironet

no cdp enable

bridge-group 1

bridge-group 1 subscriber-loop-control

bridge-group 1 spanning-disabled

bridge-group 1 block-unknown-source

no bridge-group 1 source-learning

no bridge-group 1 unicast-flooding

When I debug dot11 aaa I see the following:

211137: Oct 21 16:26:58.910: dot11_dot1x_gtk_update_on_disassociate: Recieved gtk update notice due to disconnect for 847a.885b.622c on vlan 0

211138: Oct 21 17:26:58 BST: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 847a.885b.622c Reason: Previous authentication no longer valid Could not find station pointer for client 847a.885b.622c. Using vlan number from aaa_client

211139: Oct 21 16:27:02.640: dot11_dot1x_send_ssn_eapol_key: wpav2 msg 1 pak_size 121

211140: Oct 21 16:27:02.640: dot11_dot1x_send_ssn_eapol_key: eapol->length 117

211141: Oct 21 16:27:02.640: dot11_dot1x_build_ptk_handshake: building PTK msg 1 for 847a.885b.622c

211142: Oct 21 16:27:02.640: dot11_dot1x_build_ptk_handshake: ptk key len 16

211143: Oct 21 16:27:02.640: dot11_dot1x_build_ptk_handshake: ptk key data len 22

211144: Oct 21 16:27:02.640: dot11_dot1x_build_ptk_handshake: wpav2 pmkid[DOT1X]: 4252DC05F4159E0B7BAB4A3C56116E4F

211145: Oct 21 16:27:02.689: dot11_dot1x_verify_ptk_handshake: verifying PTK msg 2 from 847a.885b.622c

211146: Oct 21 16:27:02.689: dot11_dot1x_verify_eapol_header: Warning: Invalid key len (exp=0x10, act=0x0)

211147: Oct 21 16:27:02.689: dot11_dot1x_ssn_generate_ptk: wpa-v2 PSK: use ssid psk as pmk

211148: Oct 21 16:27:02.689: dot11_dot1x_ssn_generate_ptk: dot11_dot1x_ssn_generate_ptk(): wpa-v2 clnt 847a.885b.622c does not have cached pmk rec: aaa_client->ms_mppe_receive_key:0x0

211149: Oct 21 16:27:02.689: dot11_dot1x_verify_ptk_handshake: Handshake passedCould not find station pointer for client 847a.885b.622c. Using vlan number from aaa_client

211150: Oct 21 16:27:02.690: dot11_dot1x_send_ssn_eapol_key:

211151: Oct 21 16:27:02.690: wpav2 msg3 data_len before padding 46

211152: Oct 21 16:27:02.690: dot11_dot1x_send_ssn_eapol_key:

211153: Oct 21 16:27:02.690: wpav2 msg3 padding 2 data_len after padding 56, eapol pak_size 155

211154: Oct 21 16:27:02.690: dot11_dot1x_send_ssn_eapol_key: wpav2 msg 3 pak_size 155

211155: Oct 21 16:27:02.690: dot11_dot1x_send_ssn_eapol_key: eapol->length 151

211156: Oct 21 16:27:02.690: dot11_dot1x_build_ptk_handshake: building PTK msg 3 for 847a.885b.622c

211157: Oct 21 16:27:02.690: dot11_dot1x_build_ptk_handshake: ptk key len 16

211158: Oct 21 16:27:02.690: dot11_dot1x_build_ptk_handshake: wpav2_ptk msg 3 rsnie len 22 and 20

211159: Oct 21 16:27:02.690: dot11_dot1x_build_ptk_handshake mcst_key_len 16 index 1 vlan 0

211160: Oct 21 16:27:02.690: gnonce: 01 DA 02 04 01 D2 FA 40 03 39 B1 50 00 1C 5A 2C 03 39 B1 50 00 00 00 00 00 00 00 00 01 D2 FA 40

211161: Oct 21 16:27:02.691: gtk(pt): 1B 9E E3 5F B6 82 A7 A7 3F 1E 94 56 BD ED B1 8C

211162: Oct 21 16:27:02.692:

211163: Oct 21 16:27:02.692: gtk(pt) len 16: 1B 9E E3 5F B6 82 A7 A7 3F 1E 94 56 BD ED B1 8C

211164: Oct 21 16:27:02.692:

211165: Oct 21 16:27:02.693: dot11_dot1x_build_ptk_handshake:

211166: Oct 21 16:27:02.693: build wpav2 ptk msg 3, pad data from 46 by 2

211167: Oct 21 16:27:02.693: dump temp_key_data(pt) len 48: 30 14 01 00 00 0F AC 04 01 00 00 0F AC 04 01 00 00 0F AC 02 3C 00 DD 16 00 0F AC 01 01 00 1B 9E E3 5F B6 82 A7 A7 3F 1E 94 56 BD ED B1 8C DD 00

211168: Oct 21 16:27:02.694:

211169: Oct 21 16:27:02.694: dump eapol_encrypt_key: B7 06 7B 67 33 D2 41 86 8D 52 9C 0A 0C 8F D9 3A

211170: Oct 21 16:27:02.695:

211171: Oct 21 16:27:02.695:  key_data from len 48 to 56 (ct): 34 DA 2E 1C 7A 59 30 19 BA 1E 2B B8 A8 3B 67 48 93 80 F1 39 0A 1C CB D4 D5 51 5B 50 0D 32 7D FA FC A1 12 5C D9 19 3A 8D F4 87 44 97 5B F8 BE AE 21 01 1D C2 EF 90 FC E4

211172: Oct 21 16:27:02.696:

211173: Oct 21 16:27:02.696: dot11_dot1x_build_ptk_handshake:

211174: Oct 21 16:27:02.697:  aes key wrap key_data from len 48 to 56 gtk(ct):

211175: Oct 21 16:27:02.697: dump decrypted key data: 30 14 01 00 00 0F AC 04 01 00 00 0F AC 04 01 00 00 0F AC 02 3C 00 DD 16 00 0F AC 01 01 00 1B 9E E3 5F B6 82 A7 A7 3F 1E 94 56 BD ED B1 8C DD 00

211176: Oct 21 16:27:02.698:

211177: Oct 21 16:27:02.698: dot11_dot1x_build_ptk_handshake:

211178: Oct 21 16:27:02.698: wpav2 msg 3 key data len 56

211179: Oct 21 16:27:02.703: mic_key: 68 B6 19 DB EF CA 12 B1 DC B0 6C FD 7D 8B AD FF

211180: Oct 21 16:27:02.704: hmac_sha1 mic for eapol pak len 155: E3 B5 76 CC 90 FB EA 8F E6 8F 20 16 9E CC 5F 8F

211181: Oct 21 16:27:02.704: dot11_dot1x_build_ptk_handshake:

211182: Oct 21 16:27:02.704: msg 3 hmac_sha1 mic for eapol_key len 155

211183: Oct 21 16:27:02.710: dot11_dot1x_verify_ptk_handshake: verifying PTK msg 4 from 847a.885b.622c

211184: Oct 21 16:27:02.710: dot11_dot1x_verify_eapol_header: Warning: Invalid key len (exp=0x10, act=0x0)

211185: Oct 21 16:27:02.710: dot11_dot1x_verify_ptk_handshake: Handshake passed

211186: Oct 21 17:27:02 BST: %DOT11-6-ASSOC: Interface Dot11Radio0, Station   847a.885b.622c Associated KEY_MGMT[WPAv2 PSK]

Does anyone have any ideas why I'm seeing the message "Could not find station pointer" or any other idea's why this is happening?  A search of the web throws up many threads exhibiting the same symptoms but none seem to have a fix and the fixes there are (disable aironet extensions, extend the WPA handshake and disable guest mode) haven't worked so far.

Many thanks,

377
Views
0
Helpful
0
Replies
CreatePlease to create content