Re: Nac on wireless lan controller

ittichai_a · ‎09-25-2006

Hi sir;

I have some problem in implement Nac on wireless lan controller.

- I using ACS version 4.0

- My laptop already install CTA and Aegis secure for authentication.

- Controller I have already did it.

First, time I had tried to authenticate EAP-FAST before do NAC. That working as well but after i apply policy nac on ACS, I cannot authenticate EAP-FAST anymore. Logging show "EAP type do not configure" in ACS server, but I had done to configure it.

So, now i don't have idea to implement it, so, if anyone have some suggestion or some ducument, please help me.

Thanks

dominic.caron · ‎09-26-2006

Hi,

The problem might be that Cisco's CTA is already included in aegis 4.0 client. I know there is some version problem if you install the standalone CTA. It's was documented on aegis 4 release notes.

segopala · ‎09-30-2006

Hi,

try to increase the eap timeout on controller

set all the value to maximum limit ; let me know if this resolves the problem

(GUEST_F_4-4400) >config advanced eap ?

identity-request-timeout Configures EAP-Identity-Request Timeout in seconds.

identity-request-retries Configures EAP-Identity-Request Max Retries.

key-index Configure the key index used for dynamic WEP (802.1x) unicast key (PTK).

max-login-ignore-identity-response Configure to ignore the same username count reaching max in the EAP identity response

request-timeout Configures EAP-Request Timeout in seconds.

request-retries Configures EAP-Request Max Retries.

Regards

Seema