Solved: Problems connecting Android devices to Cisco ME

Athena1390 · ‎02-01-2022

Hello,

We have 3 AP1832i set to Cisco ME (1 acts as a call it a "controller",).

They all have the latest firmware for APs (8.10.162.0).

Apple devices can connect without any problem, but no Android device can...

In order to find a solution, I tried to enable WPA3, but WLAN stay "Disabled" when WPA3 is choosed (along or without WPA2).

WPA3 does not work at all.

Do you have any idea to solve this issue ?

Thanks in advance for your help.

Athena1390 · ‎02-01-2022

Hi,

Thanks for the answer.

They list the SSIDs, but they cannot connect.

I found some information about the issue : Android is not able to connect using Fast Transfer, and best solution is WPA3.

However, WPA3 could not be Enabled using the GUI (AP always switch to Disable when selection WPA3).

Step 1	(Optional) Create a WLAN by entering this command: config wlan create wlan-id wlan-name ssid
Step 2	Disable 802.1X support on the WLAN by entering this command: config wlan security wpa akm 802.1x disable wlan-id
Step 3	Enable SAE AKM support on the WLAN by entering this command: config wlan security wpa akm sae enable wlan-id
Step 4	Set the PMF to Required state to force clients to negotiate 802.11w PMF on the WLAN by entering this command: config wlan security pmf required wlan-id
Step 5	Configure the PSK by entering this command: config wlan security wpa akm psk set-key ascii psk-key wlan-id
Step 6	Disable WPA2 on the WLAN by entering this command: config wlan security wpa wpa2 disable wlan-id
Step 7	Enable WPA3 on the WLAN by entering this command: config wlan security wpa wpa3 enable wlan-id
Step 8	Disable 802.11r Fast Transition roaming support on the WLAN by entering this command: config wlan security ft disable wlan-id
Step 9	Enable the WLAN by entering this command: config wlan enable wlan-id

Works fine now !

Karsten Iwen · ‎02-01-2022

What exactly do you mean with "but no Android device can..."?

Don't they list the SSID, do they try to connect but bring an error, do they connect but don't transmit data?
Is there anything in the Log?

Athena1390 · ‎02-01-2022

Hi,

Thanks for the answer.

They list the SSIDs, but they cannot connect.

I found some information about the issue : Android is not able to connect using Fast Transfer, and best solution is WPA3.

However, WPA3 could not be Enabled using the GUI (AP always switch to Disable when selection WPA3).

Step 1	(Optional) Create a WLAN by entering this command: config wlan create wlan-id wlan-name ssid
Step 2	Disable 802.1X support on the WLAN by entering this command: config wlan security wpa akm 802.1x disable wlan-id
Step 3	Enable SAE AKM support on the WLAN by entering this command: config wlan security wpa akm sae enable wlan-id
Step 4	Set the PMF to Required state to force clients to negotiate 802.11w PMF on the WLAN by entering this command: config wlan security pmf required wlan-id
Step 5	Configure the PSK by entering this command: config wlan security wpa akm psk set-key ascii psk-key wlan-id
Step 6	Disable WPA2 on the WLAN by entering this command: config wlan security wpa wpa2 disable wlan-id
Step 7	Enable WPA3 on the WLAN by entering this command: config wlan security wpa wpa3 enable wlan-id
Step 8	Disable 802.11r Fast Transition roaming support on the WLAN by entering this command: config wlan security ft disable wlan-id
Step 9	Enable the WLAN by entering this command: config wlan enable wlan-id

Works fine now !