Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
577
Views
0
Helpful
5
Replies

Problem with WLC Authentication

jonhill
Level 1
Level 1

‎01-26-2007 08:06 AM - edited ‎07-03-2021 01:32 PM

We have two 4400 WLC Controllers on our network using ACS for authentication. For over a week now one of the controllers is comtinually sending the following message

An Alert of Category Switch is generated with severity 1

by Switch PHMDP01_WLC4404_2/192.168.51.15 .

The message of the alert is Controller '192.168.51.15'. RADIUS server(s) are not responding to authentication requests..

The two controllers are configured exactly the same and we don't get the alerts from the other controller.

Please could someone give me some ideas as to what to look for to resolve this issue?

Thanks

Jon

Labels:
0 Helpful
5 Replies 5

jkennedy
Level 1
Level 1

‎01-26-2007 08:27 AM

I have noticed this problem as well and I narrowed it down to two things.

1. Any 350 series card that is not using ACU 6.6 and using EAP-FAST with WPA/TKIP will cause this error

2. If you have multiple ACS servers During the time that the servers are replicating you will get this message.

I think that the reason you are getting it from one controller and not the other is the fact that you have a client trying to authenticate to an AP on that controller and no the other controller and that could be causing the problem with only one. Without knowing your configuration or what type of clients you have I cannot be sure though. These are what I have narrowed down from my experiences. By the way I still haven't stopped them completely, and it is very aggravating.

0 Helpful

mikraus
Cisco Employee
Cisco Employee
In response to jkennedy

‎01-26-2007 10:14 PM

I have seen this as well. But in my case, it was also with a couple steel-belted radius servers rather than ACS.

So, I don't believe it is something on the ACS end.

0 Helpful

jkennedy
Level 1
Level 1

‎02-12-2007 08:49 AM

Have you had any luck with this? I am still receiving these error messages.

0 Helpful

csannedhi
Level 1
Level 1

‎02-12-2007 12:49 PM

If they are configured the same way, as you are pointing out only one of them should not complain about request/response failure.

Please make sure that you have added the second controller to the list of AAA clients on the ACS.

0 Helpful

jkennedy
Level 1
Level 1
In response to csannedhi

‎02-12-2007 01:29 PM

I was getting this message from all the controllers in my stack (3), concurrently. But the error only occurred at random times. All controllers are entered correctly in ACS. I upgraded to ACS 4.1.1 build 23 this morning and it seemed to clear things up. This version seems much more stable than 4.0.1 build 27. I am going to monitor it for a couple of days and see.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card