Hi,

we´ve a SSID with 802.1x authentication. Windows Devices needs a little bit time, but works fine.
iPhones need two tries to connect. On the first try you can see nothing with debug client <MAC>

it looks like the iPhone do nothing, but on the device you can see that the iphones try to connect.
At the end of the first try you get the following:

apfOpenDtlSocket: Jun 23 22:51:05.572: 78:4f:43:1c:a1:5d Received management frame ACTION on BSSID mac adr destination addr mac adr
*apfMsConnTask_0: Jun 23 22:51:05.572: 78:4f:43:1c:a1:5d Received management action frame (category code:5) from the client.
*apfMsConnTask_0: Jun 23 22:51:05.572: 78:4f:43:1c:a1:5d Found RM action category code
*apfOpenDtlSocket: Jun 23 22:51:19.799: 78:4f:43:1c:a1:5d Received management frame ACTION on BSSID mac adr destination addr mac adr
*apfMsConnTask_0: Jun 23 22:51:19.799: 78:4f:43:1c:a1:5d Received management action frame (category code:6) from the client.
*apfMsConnTask_0: Jun 23 22:51:19.799: 78:4f:43:1c:a1:5d no PMK cache entry for this client. Can't do preauth.
*apfOpenDtlSocket: Jun 23 22:51:21.161: 78:4f:43:1c:a1:5d Received management frame DISASSOC on BSSID mac adr destination addr mac adr
*apfOpenDtlSocket: Jun 23 22:51:23.943: 78:4f:43:1c:a1:5d Received management frame ASSOCIATION REQUEST on BSSID mac adr destination addr mac adr
*apfMsConnTask_0: Jun 23 22:51:23.943: 78:4f:43:1c:a1:5d Updating 11r vendor IE

After that the iPhone stops to try wait one second and then it tries again. And after one second it works and you can see the normal authentication process in the debug.... Sometimes we will receive an error message between the first and the second try "Error, unable to connect to <SSID>"

I´ve try many things, but without any solution.

- Disable FT

- Disable 802.11k

- Disable 2,4GHz

- try different Radius Server (the radius works fine)

- try different iphones with different IOS Versions

I´ve no more ideas. Can anyone help me ?

Thanks a lot M