cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
12904
Views
40
Helpful
9
Replies

ap authentication/join issue

bmarms
Level 1
Level 1

i am having issues joining new 1242LAP's to my controller.  i am receiving the follwing error on my controller:

AAA Authentication Failure for UserName:5475d01144f0 User Type: WLAN USER

username is the MAC of my new 1242LAP.  older 1242LAP's have no issue.  i have 70 of the newer ones that i have just installed and fail to join the controller with the above error message.  i'm not sure how to resolve.  any help would be appreciated.  thanks.

Brandon

9 Replies 9

Andrew Betz
Cisco Employee
Cisco Employee

Hi Brandon,

Good question.  Sounds like your WLC may be authorizing LAPs via an Auth-list or AAA.  You can view these settings here:

Web GUI --> Secuirty --> AAA --> AP Policies

If you do not wish to authorize the APs via an auth-list or AAA, simply uncheck the following option:

Authorize MIC APs against auth-list or AAA

Cheers.

Drew

turns out the AP's were shipped with mesh image

and are in bridge mode.  even though they have a MIC, the controller was unable to auth.  i have to manually enter

their mac into the ap auth list.  they would then join the controller as a bridge.  once joined, i changed ap mode to

"local".  ap would then reboot and i removed entry from ap auth list.  thanks for your reply.

Good Catch, Brandon.  That would do it.  Glad to hear you were able to resolve this one.

Take Care,

Drew

Was there ever some sort of bug report or notice released about this issue?  I had the exact same happen today and after being on the phone with TAC for 3 hours, I stumbled across this post and it fixed my issue.  First of all, thanks and second I would be interested to know if these issue was/is documented somewhere.

Good question.  I had the same initial reaction, but I later found out that some indoor LAPs can be pre-ordered with the Mesh image installed.  This order is typically placed by your Cisco Partner, or reseller.

Best,

Drew

That' perfect solution. Thanks a lot

Yes, same problem here. Had to manually enter the mac into the ap auth list. Thanks for this post. This info should be in step by step manual.

Thanks for posting this you guys just saved me a ton of trobule.

Mike Hale
Level 1
Level 1

This also just helped me clear up an issue...thank you very much for posting the solution.

It's really weird because our WLC doesn't do MAC authorization...in fact, the problem AP is the only one with a specific entry in that auth table.  Very strange. 

Review Cisco Networking for a $25 gift card