My site is part of a large corporate enterprise environment. Globally we have well over 65,000 windows 10 client machines... I would say 60-70% of them running the same OS and Intel driver version as me. In each of our sites around the world, we have locally installed WLC's (and RADIUS servers) that have had MANY MANY hands in the configuration over the years. To complicate matters, we outsourced infrastructure operations to a 3rd party so although my team and I have the skills to check things, we don't necessarily have the permissions to...
So I'm kinda stuck "force feeding" logs to direct our vendor to the proper fix in most situations.
At this point, we got a log capture from an access point when I was disconnected, and it appears the RADIUS server rejected the re-authentication request so I'm now pushing the RADIUS team to figure out why. From the log, these entries for my client's MAC address stood out:
EAP_ID_RES MESSAGE_RECEIVED
AAA_AUTH AAA_MESSAGE_CREATION_FAILED
ACCESS_ACCEPT MESSAGE_RECEIVED
AUTH_DOT1X WLAN_REQUIRES_802_1X_AUTH
EAP_ID_RES PACKET_SENT_TO_CLIENT
PEM_EVENT_MSG WEB_AUTH_MAX_RETRY_EXCEEDED
