We are using PEAP authentication with ACS 3.2, wink2 client with the Microsoft PEAP supplement (Q313664). When the client is booting up it associates to the AP and the AP initiates the EAP process. Because the client is still in the boot process and doesnt respond fast enough the AP's EAP requests, it disassociates the client before is finishes the bootup process and the user cannot login. Is there away to increase the number of EAP requests or adjust the timeout value between EAP requests? (If the user waits approx 2 minutes the client will re-attempt to associate and the PEAP process is successful).
Here is an example of the AP EAP diag:
2003/08/22 11:05:03 (Info): Station [MLT06T]0009b746267 Associated
Dot1X Authentication Entry (MLT06T) is created (Current Count=1)
RADIUS: Sending EAP-Request/Identity(id=1) packet to client MLT06T
RADIUS: Sending EAP-Request/Identity(id=2) packet to client MLT06T
Session-timeout for station 0009b746267
RADIUS: Sending EAP-Request/Identity(id=3) packet to client MLT06T
EAP: Received EAPOL-Start from client MLT06T
2003/08/22 11:05:47 (Warning): EAP retry limit reached for Station [MLT06T]0009b
Transferring Crash file from standby:
Login to the Active WLC in HA.
(Cisco Controller) >transfer upload datatype crash
(Cisco Controller) >transfer upload filename <Desired filename>
(Cisco Controller) >transfer up...
This is the start of a display filter cross reference between Wireshark and OmniPeek.
The 1st installment is a table of advanced filters. More filters will be added as time allows.
It is a living doc, so check back for changes every so often
Please feel ...
I have created a Powershell script to automatically add a Wireless Guest User on Cisco WLCs. (tested on 2500 Series)
The script should be completely self explanatory.
Powershell SNMP Module (Install-Module -Name SNMP)
SNMP Write Access to...