Buy or Renew
Buy or Renew
Cisco + Splunk: Itā€™s a new day for your data. Learn more.
Ā 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
25233
Views
5
Helpful
2
Replies

WAP Error Message Received invalid EAPOL-Key MIC (msg 2/4)

Go to solution
patrik.keller
Level 1
Level 1

ā€Ž11-06-2012 07:02 AM

Hi there

can anyone help me with this error message Received invalid EAPOL-Key MIC (msg 2/4) .

Time Stamp Severity Service Description
Nov  5 2012 15:11:27 warn hostapd[4365] Received invalid EAPOL-Key MIC (msg 2/4)

I only get this message from one device when connecting to the WLAN.

This happens only from time to time. Sometimes it connects without any problem.

Appriciate any help.

Sincerely

Patrik

3 people had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Tom Watts
VIP Alumni
VIP Alumni

ā€Ž11-06-2012 07:36 AM

This is an error when the STA (the computer) constructs the packet. 2/4 is indicate of the handshake process where it sends a nonce-value with its own MIC. A MIC is a message integrity check (or code).

Basically, this error is saying, whatever that computer is sending is invalid. You can try to make the AP behave differently such as force the use of AES instead of AES+TKIP depending on what product you have. Pretty much removing "mixed" wireless networking. As example, try using WPA2 (AES) only.

Such errors are more common using TKIP since it is the nature of TKIP to send a per-packet-key.

-Tom
Please rate helpful posts

-Tom Please mark answered for helpful posts http://blogs.cisco.com/smallbusiness/

View solution in original post

2 Replies 2

Go to solution
Tom Watts
VIP Alumni
VIP Alumni

ā€Ž11-06-2012 07:36 AM

This is an error when the STA (the computer) constructs the packet. 2/4 is indicate of the handshake process where it sends a nonce-value with its own MIC. A MIC is a message integrity check (or code).

Basically, this error is saying, whatever that computer is sending is invalid. You can try to make the AP behave differently such as force the use of AES instead of AES+TKIP depending on what product you have. Pretty much removing "mixed" wireless networking. As example, try using WPA2 (AES) only.

Such errors are more common using TKIP since it is the nature of TKIP to send a per-packet-key.

-Tom
Please rate helpful posts

-Tom Please mark answered for helpful posts http://blogs.cisco.com/smallbusiness/

Go to solution
patrik.keller
Level 1
Level 1
In response to Tom Watts

ā€Ž11-15-2012 11:52 PM

Hi Tom

thank you for the quick reply.

It helped in some way. The log entrys are not as many as before. But it still happens from time to time.

Is there an other twaek in the settings I could try?

Take care

Patrik

0 Helpful
Customers Also Viewed These Support Documents