Cisco Aironet 1231 with IAS - Cannot authenticate Intel or Windows clients
- From: "Rad Billy" <joshuahatten@xxxxxxxxx>
- Date: 5 Jan 2006 09:02:39 -0800
Hello all,
I've just set up an IAS server on Win2k3 and a Cisco Aironet 1231 AP.
I've setup an SSID with EAP as the Open authentication type. I am
using WPA with AES encryption.
I have several Cisco Aironet clients with new cards and the latest ACU.
On these clients, I simply specified WPA2 encryption with PEAP and the
clients authenticate successfully to my IAS server and work on the
wireless network. Accounting on the radius server logs a success and
there is no problem. These machines are all running Win2k SP4.
However, I have additional machines running XP Pro SP2. These machines
have Intel 2200BG cards integrated. When I setup the Intel proset
utility with my SSID, WPA2 and PEAP, the machine fails to authenticate.
It connects to the AP and begins authentication then fails. I've also
disabled the Intel proset client and attempted to use the integrated
Wireless config in XP pro and that fails as well.
When either the intel or Windows clients attempt to authenticate, I
recieve the following event in event viewer:
------------------------------------------------------------------------------
Event Type: Warning
Event Source: IAS
Event Category: None
Event ID: 2
Date: 1/5/2006
Time: 8:58:33 AM
User: N/A
Computer: monkey
Description:
User joshuaha was denied access.
Fully-Qualified-User-Name = fakedomain.local/HQ/Users/fake user
NAS-IP-Address = 172.21.230.53
NAS-Identifier = WAP123113
Called-Station-Identifier = 0016.469c.3310
Calling-Station-Identifier = 0013.ce54.64e5
Client-Friendly-Name = WAP123113
Client-IP-Address = 172.21.230.53
NAS-Port-Type = Wireless - IEEE 802.11
NAS-Port = 1703
Proxy-Policy-Name = Use Windows authentication for all users
Authentication-Provider = Windows
Authentication-Server = <undetermined>
Policy-Name = PEAP POLICY
Authentication-Type = PEAP
EAP-Type = <undetermined>
Reason-Code = 16
Reason = Authentication was not successful because an unknown user
name or incorrect password was used.
For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 21 03 07 80 !..?
------------------------------------------------------------------------------
The major difference in the event is that EAP-Type says "undetermined"
I've checked the RASTLS and RASCHAP debugs, but they are pretty
lengthy. I can post here if someone thinks they will help.
Any help will be greatly appreciated!!!
.
- Follow-Ups:
- Prev by Date: Policy Condition question
- Next by Date: Re: Cisco Aironet 1231 with IAS - Cannot authenticate Intel or Windows clients
- Previous by thread: Policy Condition question
- Next by thread: Re: Cisco Aironet 1231 with IAS - Cannot authenticate Intel or Windows clients
- Index(es):
Relevant Pages
|
Loading
