Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2188
Views
0
Helpful
3
Replies

Odd AP Authorization issue

Ryan Curry
Level 1
Level 1

‎03-29-2011 08:07 AM - edited ‎07-03-2021 08:00 PM

About 2 weeks ago I installed a 2125 controller in one of our remote sites that had 4 LWAPP aps.  Prior to the controller install, the APs were tunneling across the WAN to our main campus.  Once the controller was installed, I started to get the following critical alarm in WCS and I can't figure out what I need to do to take care of it:

Failed to authorize AP '<MAC>' with certificate type  'Unknown' on controller '<Remote Site's Controller>'. 'AP Authorization entry does not  exist in the Controllers AP Authorization List.'

From what I've seen, the reported AP is not a Cisco radio MAC and the existing APs are running fine.  Aside from taking my Air Magnet laptop over there and hunting down (and turning off) the device I'm at a loss on what action I can take.  Does anyone have a suggestions on this scenario?

Thanks all!

Labels:
0 Helpful
3 Replies 3

Stephen Rodriguez
Cisco Employee
Cisco Employee

‎03-29-2011 10:01 AM

Ryan,

  You could try to chase the mac address/ apr entry down and find the port it's connected to.

HTH,
Steve

------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered
0 Helpful

dmantill
Level 4
Level 4

‎03-30-2011 01:15 AM

yes seems to be an attack if  the ip address does not belong to a cisco ap. Is it happening only in one remote site?  Btw do the trace on the wired site at first by checking the mac address table  or arp table   Regards   

Posted from my mobile device.

0 Helpful

Ryan Curry
Level 1
Level 1

‎03-30-2011 08:21 AM

Well, I'm an idiot -- based on the suggestions here, I looked outside of the local network and back to my core and found that MAC address.  After tracing it down and getting the IP from the core's ARP table I found the crux of the problem - it's my location appliance.  The same location appliance that I have an open TAC case with because it's not communicating with this WLC (LOL, ya think the two are realated???).  I think my issue has to due with not having the WLC configured to accept SSC.

Ugh, somedays you're the pidgeon, somedays you're the statue ....

Thanks for the help guys.

EDIT - It's definately a SSC issue, will take care of it tonight.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card