Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1591
Views
5
Helpful
3
Replies

WIRELESS CONTROLLER 9800-CL / AUTHENTICATION 802.1X JUST XIAOMI SMARTPHONES CONNECT

Go to solution
fabiano.dantas
Level 1
Level 1

‎10-05-2020 09:23 PM - edited ‎07-05-2021 12:36 PM

HI EXPERTS,

 

In the last week, i worked in new project with WLC 9800 with autenthication 802.1X EAP-PEAP.

 

The Server Authentication is a WINDOWS NPS.

 

But when I started testing, I found that only Xiaomi Smartphones completed the authentication steps.

I tried with other devices, like Sansung Galaxy, Iphone 11 and most importantly the windows workstation, no device has completed authentication.

 

I tested with 2 XIAOMI smartphones and it works perfectly.

 

This very stranger

 

 

Anybody saw the behavior similar

 

Thanks Guys

 

 

Labels:
Preview file
150 KB
Preview file
42 KB
Preview file
77 KB
0 Helpful
3 Accepted Solutions

Accepted Solutions

Go to solution
Sandeep Choudhary
VIP Alumni
VIP Alumni

‎10-05-2020 10:22 PM

paste the output of the command:

 

debug client <mac addres sof non working client>

 

Regards

Dont forget to rate helpful posts

View solution in original post

0 Helpful

Go to solution
patoberli
VIP Alumni
VIP Alumni

‎10-08-2020 11:31 PM

This to consider:

- Virtual-Interface must use a private IP address

- Don't run a release with known issues in regards to connection (16.12.4a has a specific bugfix for such an issue in 16.12.3)

- Use a valid and trusted certificate on the NPS, the clients must trust the Root Certificate

- Don't have 802.1x-SHA2 enabled on the SSID (unless you are testing WPA3)

View solution in original post

Go to solution
fabiano.dantas
Level 1
Level 1
In response to patoberli

‎10-11-2020 05:57 PM

Hi Patoberli, thanks for your help.

 

I can fixed the issue.

 

There was a problem betwieen the link and WLC and Radius Server, the latency was very high, beacuse dont complete the authentication.

 

The Wireless Controller is in the Brazil, and The Servers Radius is in other countries.

 

Thanks Guys.

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Sandeep Choudhary
VIP Alumni
VIP Alumni

‎10-05-2020 10:22 PM

paste the output of the command:

 

debug client <mac addres sof non working client>

 

Regards

Dont forget to rate helpful posts

0 Helpful

Go to solution
patoberli
VIP Alumni
VIP Alumni

‎10-08-2020 11:31 PM

This to consider:

- Virtual-Interface must use a private IP address

- Don't run a release with known issues in regards to connection (16.12.4a has a specific bugfix for such an issue in 16.12.3)

- Use a valid and trusted certificate on the NPS, the clients must trust the Root Certificate

- Don't have 802.1x-SHA2 enabled on the SSID (unless you are testing WPA3)

Go to solution
fabiano.dantas
Level 1
Level 1
In response to patoberli

‎10-11-2020 05:57 PM

Hi Patoberli, thanks for your help.

 

I can fixed the issue.

 

There was a problem betwieen the link and WLC and Radius Server, the latency was very high, beacuse dont complete the authentication.

 

The Wireless Controller is in the Brazil, and The Servers Radius is in other countries.

 

Thanks Guys.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card