Is this undo able or something else 

Hi

Change as per below and try again:

encryption mode ciphers aes-ccm tkip -->Remove this

encryption mode ciphers aes-ccm
dot11 SSID Gotcha
auth key-management wpa ver 2
wpa-psk ascii Abf78d99a0

Regards

Don't forget to rate helpful posts

Hi @Sandeep

Updated the configuration as suggested, Wi-fi network is just identifying and didnt even asked for key. Now its unidentified

Some of the previously worked laptops are now showing limited connectivity

you can check my attached config as well

Sandeep

Any update on this

check below link but it will be hectic if you have multiple MAC address like 80-100

https://supportforums.cisco.com/discussion/9713856/wpa-psk-and-mac-filtering

One more option is to implement EAP-FAST

http://www.cisco.com/c/en/us/support/docs/wireless-mobility/wireless-lan-wlan/116580-configure-eapfast-00.html

Guide me which one is best 

Of-course 1st option is very difficult to implement and i will not recommend.

yes you can try to implement EAP-FAST.

here is my post on it:

https://rscciew.wordpress.com/2014/07/24/autonomous-ap-with-local-radius-server-eap-fast/

Reagrds

Don't forget to rate helpful posts

correct me if I am wrong,

Do i have to install Cisco Anyconnect Client on all the PC's if I configure EAP-FAST

Since the its mentioned in your post but not in below link (if its mandatory)

http://www.cisco.com/c/en/us/support/docs/wireless-mobility/wireless-lan-wlan/116580-configure-eapfast-00.html

@Sandeep

Any comment

No its not mandatory, I don't think you need Any-connect on each client computer.

Regards

Than how will the user created under Radius Server Local be used or it will prompt for User/PWD after entering the WPA2 Key

We have some MAC OSx's which also needs access over the network configuring EAP-Fast 

Secondly, we need to restrict Smartphones /Tablets from accessing network which is not possible with EAP-Fast. So have to move to PEAP or EAP-TLS