cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2075
Views
15
Helpful
4
Replies

odd workstation login behavior on wireless

ben.posner
Level 1
Level 1

edit: new details below

has anyone else noticed some odd behavior for windows 10 workstations using machine auth for PEAP on wireless? i cannot confirm if this Win10 only yet as i don't have access to a test workstation running 7 or 8 that are attached to this domain.

we keep seeing in our ISE 2.1 auth logs workstations attempting to authenticate with Domain\WorkstationName$ and of course it gets dropped but we're not sure if it's related to our test workstations connecting pre-user login and then disconnecting just after the user logs in. the user then manually has to reconnect and usually things are fine.

here's a snapshot of what the auth log looks like:

the user has to manually select the SSID mutliple times over the login process as the client keeps disconnecting and i don't understand why.

here's a screenshot of that odd entry's details:

The SSID i'm using for this is configured like all of our others so i don't think it's that. thoughts?

EDIT: found the following bug: ISE rejects access-request does not contain the username attribute

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCva20683/?referring_site=bugquickviewclick

this sounds an awful lot like what i'm seeing. but the bug says "No release planned to fix this bug" which is outstanding...

open a case? devices won't automatically connect thanks to this stupid bug.