Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
597
Views
0
Helpful
2
Replies

PEAP clients --- rapid re-authentication

charles wainwright
Level 1
Level 1

‎09-01-2010 04:53 AM - edited ‎07-03-2021 07:08 PM

We are deploying  a large number of  IV pumps with internal wireless NICs( dlink)

Clients can successfuly authenticate...then re-authenticate every few seconds..

controller code 6.0.188

ACS version 4.2

authenticating to microsoft AD

Clients are configured for WPA2, PEAP, MSCHAPv2,

each has a unique identity/password

ACS is the CA( using self signed cert)

Any know of a timer value or setting that my trigger this ?

Labels:
0 Helpful
2 Replies 2

Kayle Miller
Level 7
Level 7

‎09-01-2010 07:02 AM

Charles,

     Just a thought on this, is WPA AES enabeld on the SSID? If so try disabling it if you can. I have run into several instances where when that was enabled even though not being used it caused thousands of re-authentications per second.  I actually saw it take down 2 seperate client facilities, in both cases I had TAC Cases open and TAC couldn't understand why it was happening, only that once we disabled WPA AES it immediately stopped and the clients only re-authed on the timer set in the WLC for Session timeout.

Hope this helps.. Please rate useful posts.

Thanks,

Kayle

0 Helpful

George Stefanick
VIP Alumni
VIP Alumni

‎09-03-2010 05:16 PM

for starters, do a client debug and see what is going on ...

from the WLC

debug client XXXXXXXXXX

"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
___________________________________________________________
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card