05-16-2019 11:08 AM - edited 07-05-2021 10:24 AM
Hi. We have a 2700 autonomous AP configured to allow domain users to authenticate access to the Wireless Lan. To connect to the wireless the users enter their username/password or tick the "Use windows credentials" box which prepopulates the fields. We then get the "unable to connect to network" error. We have a guest WiFi with WPA2 which works fine by the way.
We use Cisco ISE to authenticate the users which is backed off to our AD servers. The rules are working, as the radius live logs show passes for both the machine and user.
Debugs on the AP show that it is receiving the "Radius Access Accept" message. Windows Event Logs show "Wireless 802.1x authentication succeeded." followed by "Dynamic key exchange did not succeed within configured time."
I don't think the AP is timing out, not sure if a Windows issue or something I am doing. Any help would be appreciated.
05-17-2019 06:50 AM
05-17-2019 06:55 AM
No, nothing returned apart from Access-Accept.
The AP has two VLANS configured though. The client accesses EAP through an SSID that is set to Vlan 200 which is the normal data (and mgmt) VLAN of the LAN.
05-17-2019 07:31 AM
05-17-2019 07:49 AM
Hi. We're discussing same issue on my other thread, I've just replied to that :)
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide