maximum 25 (almost) person at the same time can use the account X (create on LDAP directory) for authentication in the wireless network.

once reach this "limit" they get error while try to authenticated.

But when i create the same account X locally on the WLC we didn't get any issue.

security  --> aaa --> user login policies

Max Concurrent Logins for a user name , what is the value ?

------------------------------------------------------------------------------------

Pleae make sure to rate correct answers

the value is 0 (unlimited)

ok so this is why for internal users it is ok.

for LDAP as far as i know there is no limit,

but the question is what is the type of security used ?

can u share :

show advanced eap

show sysinfo

i found something about "maximum concurrent login" for radius.

below the output request:

(Cisco Controller) >show advanced eap

EAP-Identity-Request Timeout (seconds)........... 30

EAP-Identity-Request Max Retries................. 2

EAP Key-Index for Dynamic WEP.................... 0

EAP Max-Login Ignore Identity Response........... enable

EAP-Request Timeout (seconds).................... 30

EAP-Request Max Retries.......................... 2

EAPOL-Key Timeout (milliseconds)................. 1000

EAPOL-Key Max Retries............................ 2

EAP-Broadcast Key Interval....................... 3600

(Cisco Controller) >show sysinfo

Manufacturer's Name.............................. Cisco Systems Inc.

Product Name..................................... Cisco Controller

Product Version.................................. 7.3.101.0

Bootloader Version............................... 1.0.1

Field Recovery Image Version..................... 6.0.182.0

Firmware Version................................. FPGA 1.3, Env 1.6, USB console 1.27

Build Type....................................... DATA + WPS

System Name......................................

System Location..................................

System Contact...................................

System ObjectID.................................. 1.3.6.1.4.1.9.1.1069

Redundancy Mode.................................. Disabled

IP Address.......................................

Last Reset....................................... Power on reset

System Up Time................................... 4 days 2 hrs 9 mins 23 secs

System Timezone Location......................... (GMT +1:00) Amsterdam, Berlin, Rome, Vienna

Configured Country...............................

Operating Environment............................ Commercial (0 to 40 C)

Internal Temp Alarm Limits....................... 0 to 65 C

--More-- or (q)uit

Internal Temperature............................. +40 C

External Temperature............................. +28 C

Fan Status....................................... OK

State of 802.11b Network......................... Enabled

State of 802.11a Network......................... Enabled

Number of WLANs.................................. 1

Number of Active Clients......................... 707

Burned-in MAC Address............................

Power Supply 1................................... Present, OK

Power Supply 2................................... Absent

Maximum number of APs supported.................. 250

can you please collect the following debugs when you try to exceed 25 logins for the same user:

debug client  < mac address of the wireless client >

debug aaa all enable

----------------------------------------------------------------------------------------------------------------------------------------

Please make sure to rate correct answers