Users not able to connect to AP. They get limited connectivity. If i will remove their ID from client list by filtering the mac address.Then they are able to connect. Why every time i need to remove user from client list? what is permanent solution?
There can be many reasons.
If your using LAP then remove "client exclusion feature" if you configure it.
Also check are the clients getting the correct ip and able to ping to the gateway.
First of all you will have to verify the actual issue:
>> The users are not able connect may mean different things:
++ They are not able to authenticate
++ They are not able to fetch an IP address after authentication
++ They are getting IP from an incorrect subnet
Depending on the situation, we will be able to isolate the issue and troubleshoot it.
If the client is being excluded, you should be able to see the client in the excluded list.
It doesn't happen with the same user everytime. User is able to get the IP address but it is not getting pinged and sometimes it get 0.0.0.0 IP too. There ae not excluded anytime, we just disable them and again remove them from disabled client for them to work.
If it happens to the same device and not others, then maybe upgrade the driver for that device. Might also be a configuration issue. Make sure that your using WPA2/AES and not WPA/TKIP or a mix of both. If the client works fine with an open ssid, then you have an issue with your wlan configuration or the client.
post your show wlan <wlan id> and show version