05-16-2019 11:08 AM - edited 07-05-2021 10:24 AM
Hi. We have a 2700 autonomous AP configured to allow domain users to authenticate access to the Wireless Lan. To connect to the wireless the users enter their username/password or tick the "Use windows credentials" box which prepopulates the fields. We then get the "unable to connect to network" error. We have a guest WiFi with WPA2 which works fine by the way.
We use Cisco ISE to authenticate the users which is backed off to our AD servers. The rules are working, as the radius live logs show passes for both the machine and user.
Debugs on the AP show that it is receiving the "Radius Access Accept" message. Windows Event Logs show "Wireless 802.1x authentication succeeded." followed by "Dynamic key exchange did not succeed within configured time."
I don't think the AP is timing out, not sure if a Windows issue or something I am doing. Any help would be appreciated.
05-17-2019 06:50 AM
05-17-2019 06:55 AM
No, nothing returned apart from Access-Accept.
The AP has two VLANS configured though. The client accesses EAP through an SSID that is set to Vlan 200 which is the normal data (and mgmt) VLAN of the LAN.
05-17-2019 07:31 AM
05-17-2019 07:49 AM
Hi. We're discussing same issue on my other thread, I've just replied to that :)
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: