• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

WPA stops communicating, yet clients still associated

S

spidey07

No Lifer
This seems straight forward. 4400 controllers with 1242 access points. The clients are a mix of windows CE devices and "dumb" wireless serial devices. The WLAN is configured as WPA1/WPA2 on the controllers and are authenticated via PEAP/RADIUS. Encryption is AES.

The controller/WCS server has this message when a client has trouble, rebooting the client resolves it. "The WEP key configured at the station may be wrong." These messages occur about every few minutes with 85 clients.

Only thing I can think of there is some kind of key rotation problem. Any ideas or why I'm getting messages about WEP?

Thanks in advance.
 
Controllers are pretty new. 4.0.something. I'm probably gonna have to open a TAC case. None of the wireless guys can figure it out.
 
Spidey, just to make sure I understand the authentication of the clients, both the CE devices and the wireless serial devices are authenticating via PEAP using WPA/WPA2 AES key management?

Edit: One thing I see with the bug listed above is that it is when TKIP is used and Spidey said he was using AES.
 
Nightowl, that's correct.

I don't know the details of AES or how often keys are rotated. But I'm leaning that way. I would normally call it a client bug but both clients have the same symptoms and they are very different.
 
Well what I am seeing in the notes is that the error actually does not represent the correct error since it is referring to WEP and you are obviously not using WEP. It should be fixed in 4.0.206.
 
If it makes any difference there are two WLANs assigned to the same interface in the controller. Seems fishy. This means both WLANs (a WPA/PEAP one and a static WEP one) are both on the same layer2 network. I don't know if this is even supported, but that's the way it is. Essentially you're running two separate SSIDs with different security on the same L2 network.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top