Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

RADIUS activated deactivated

Hello,

I see the follwoing on one of the WLC running 4.2.176.0

RADIUS server 10.64.230.4:1812 activated on WLAN 1
RADIUS server 10.64.16.11:1812 deactivated on WLAN 1

Thanks

Bo

3 REPLIES
Hall of Fame Super Silver

Re: RADIUS activated deactivated

Try to increase the timeouts:

config radius auth retransmit-timeout 1 5

config radius auth retransmit-timeout 2 5

http://www.cisco.com/en/US/tech/tk722/tk809/technologies_tech_note09186a0080810880.shtml#t5

-Scott
*** Please rate helpful posts ***
New Member

RADIUS activated deactivated

After working with TAC, I resolved this issue recently.  Increasing the timeout value did not help. On the WLC, try:

config radius aggressive-failover disable

As per http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a0080665d18.shtml :

If the aggressive failover feature is enabled in WLC, the WLC is too aggressive to mark the AAA server as not responding. But, this should not be done because the AAA server is possibly not responsive only to that particular client, if you do silent discard. It can be a response to other valid clients with valid certificates. But, the WLC can still mark the AAA server as not responding and not functional.

In order to overcome this, disable the aggressive failover feature. Issue the config radius aggressive-failover disable command from the controller GUI in order to perform this. If this is disabled, then the controller only fails over to the next AAA server if there are three consecutive clients that fail to receive a response from the RADIUS server.

New Member

RADIUS activated deactivated

Dave,

Thanks for the solution.

I just experienced this issue on my WLC and disabled the aggressive-failover.

Will see if the problem happens again or not and post back.

Regards,
Delgee

5386
Views
0
Helpful
3
Replies