locked
Cisco 4402 NAP issue RRS feed

  • Question

  • I know this is more likely to be related to the Cisco box but I don't seem to be getting anywhere and I thought you guys may have came across this before.

    Our laptops are authenticating via RADIUS using the Cisco 4402 WLC

    The laptops themselves appear to be authenticating fine prior to login, however, when a user logs in the 4402 reports:

    Tue Sep  1 12:09:12 2009: 00:22:fa:40:a1:16 Access-Challenge received from RADIUS server 10.160.21.1 for mobile 00:22:fa:40:a1:16 receiveId = 37
    Tue Sep  1 12:09:12 2009: AuthorizationResponse: 0x11dce860
    Tue Sep  1 12:09:12 2009:       structureSize................................250
    Tue Sep  1 12:09:12 2009:       resultCode...................................255
    Tue Sep  1 12:09:12 2009:       protocolUsed.................................0x00000001
    Tue Sep  1 12:09:12 2009:       proxyState...................................00:22:FA:40:A1:16-25:09
    Tue Sep  1 12:09:12 2009:       Packet contains 4 AVPs (not shown)
    Tue Sep  1 12:09:13 2009: AuthenticationRequest: 0x14f6d0ac
    Tue Sep  1 12:09:13 2009:       Callback.....................................0x107aee7c
    Tue Sep  1 12:09:13 2009:       protocolType.................................0x00140001
    Tue Sep  1 12:09:13 2009:       proxyState...................................00:22:FA:40:A1:16-25:0A
    Tue Sep  1 12:09:13 2009:       Packet contains 13 AVPs (not shown)
    Tue Sep  1 12:09:13 2009: 00:22:fa:40:a1:16 Successful transmission of Authentication Packet (id 4) to 10.160.21.1:1812, proxy state 00:22:fa:40:a1:16-00:00
    Tue Sep  1 12:09:13 2009: 00000000: 01 04 00 f2 5f 52 8e e6  e1 67 2c f5 f7 db ff f3  ...._R...g,.....
    Tue Sep  1 12:09:13 2009: 00000010: 0f 36 8a 2b 01 0e 53 43  48 4f 4f 4c 5c 6d 73 69  .6.+..SCHOOL\msi
    Tue Sep  1 12:09:13 2009: 00000020: 6d 73 1f 13 30 30 2d 32  32 2d 46 41 2d 34 30 2d  ms..00-22-FA-40-
    Tue Sep  1 12:09:13 2009: 00000030: 41 31 2d 31 36 1e 24 30  30 2d 31 36 2d 39 44 2d  A1-16.$00-16-9D-
    Tue Sep  1 12:09:13 2009: 00000040: 36 34 2d 41 46 2d 39 30  3a 53 54 41 4c 42 41 4e  64-AF-90:STALBAN
    Tue Sep  1 12:09:13 2009: 00000050: 53 5f 50 52 49 56 41 54  45 05 06 00 00 00 1d 04  S_PRIVATE.......
    Tue Sep  1 12:09:13 2009: 00000060: 06 0a a0 16 9c 20 0b 63  69 73 63 6f 34 34 30 32  .......cisco4402
    Tue Sep  1 12:09:13 2009: 00000070: 1a 0c 00 00 37 63 01 06  00 00 00 01 06 06 00 00  ....7c..........
    Tue Sep  1 12:09:13 2009: 00000080: 00 02 0c 06 00 00 05 14  3d 06 00 00 00 13 4f 2c  ........=.....O,
    Tue Sep  1 12:09:13 2009: 00000090: 02 0f 00 2a 19 00 17 03  01 00 1f a9 52 fa 16 74  ...*........R..t
    Tue Sep  1 12:09:13 2009: 000000a0: 60 26 5c 02 ed 75 d8 d8  bf 7a 93 2e 82 62 6a 37  `&\..u...z...bj7
    Tue Sep  1 12:09:13 2009: 000000b0: bc cd 94 b0 f3 b1 65 bf  5d f1 18 26 5d 22 07 45  ......e.]..&]".E
    Tue Sep  1 12:09:13 2009: 000000c0: 00 00 01 37 00 01 17 00  fe 80 00 00 00 00 00 00  ...7............
    Tue Sep  1 12:09:13 2009: 000000d0: 28 44 e5 51 7d 03 fa b3  00 00 00 04 6b 0d ab 80  (D.Q}.......k...
    Tue Sep  1 12:09:13 2009: 000000e0: 50 12 a4 ad e6 40 92 44  20 67 15 fe 45 af 52 36 
    P....@.D.g..E.R6
    Tue Sep  1 12:09:13 2009: 000000f0: 80 75                                             .u
    Tue Sep  1 12:09:13 2009: 00000000: 03 04 00 2c aa 3b 83 d1  b2 f0 ae 95 e0 a2 e4 48  ...,.;.........H
    Tue Sep  1 12:09:13 2009: 00000010: c0 9b 6c be 4f 06 04 0f  00 04 50 12 84 e7 96 2a  ..l.O.....P....*
    Tue Sep  1 12:09:13 2009: 00000020: ff 78 8f 14 a0 9b f4 ee  8e 06 9b 53              .x.........S
    Tue Sep  1 12:09:13 2009: ****Enter processIncomingMessages: response code=3
    Tue Sep  1 12:09:13 2009: ****Enter processRadiusResponse: response code=3
    Tue Sep  1 12:09:13 2009: 00:22:fa:40:a1:16 Access-Reject received from RADIUS server 10.160.21.1 for mobile 00:22:fa:40:a1:16 receiveId = 37
    Tue Sep  1 12:09:13 2009: 00:22:fa:40:a1:16 [Error] Client requested no retries for mobile 00:22:FA:40:A1:16
    Tue Sep  1 12:09:13 2009: 00:22:fa:40:a1:16 Returning AAA Error 'Authentication Failed' (-4) for mobile 00:22:fa:40:a1:16
    Tue Sep  1 12:09:13 2009: AuthorizationResponse: 0x369f7890
    Tue Sep  1 12:09:13 2009:       structureSize................................28
    Tue Sep  1 12:09:13 2009:       resultCode...................................-4
    Tue Sep  1 12:09:13 2009:       protocolUsed.................................0xffffffff
    Tue Sep  1 12:09:13 2009:       proxyState...................................00:22:FA:40:A1:16-25:0A
    Tue Sep  1 12:09:13 2009:       Packet contains 0 AVPs:

    strangely tho the RADIUS server is saying in the event viewer that it granted access to the user.

    The strangest thing is tho once I have logged in and out svereal times without rebooting the user suddenly seems to be able to authenticate.

    Any pointers?
    Tuesday, September 1, 2009 12:10 PM

Answers