Wireless Access

torelo · ‎11-16-2016

Hi,

one of our customers bought a new public-signed cert for his controller.

The controller is configured for EAP-Termination with MSCHAP and has a database connection to a RADIUS server (I know it would be better to terminate with RADIUS direct).

Since he is using the new certificate, all the android devices can't connect to the wifi. All the android devices respond with 'wrong password'. Windows 7 and 10 machines are running fine with the new server-certificate.

In the log I see the message:

deauth from sta: xxxxxx Reason: Response to EAP Challenge failed

The controller is a 3200 with 6.2.1.4 running.

Any ideas what could be possibly wrong with those androids or the config?

Sven
ACMP + ACCP

jrwhitehead · ‎11-17-2016

First thing I'd check is if the Android clients trust the new certificate. They might not have the necessary CA cert..

Cheers
James

-------------------------------------------------------
-------------------@whereisjrw-------------------
------------------------blog-------------------------
ACCX #540 | ACMX #353 | ACDX #216
-----------Mobility First Expert #11----------
-------------------------------------------------------

If a reply adequately addresses your issue, please click on the "Accept as Solution" and "Give Kudos" button so this information can benefit other users via search.

torelo · ‎11-17-2016

Hi,

the CA is in the list of those android devices.

Sven
ACMP + ACCP

torelo · ‎11-21-2016

A controller update to 6.4.4.10 solved this issue. Seems that there was an incompatibility with EAP or the used TLS version

Sven
ACMP + ACCP

Innovate at the speed of mobile and IoT.

Be in the know.

Join, Learn, Share.

How can we help?

Essential Reading.

Ideas Exchange.

Wireless Access

EAP-PEAP Termination with new controller certificate - Android not connecting

EAP-PEAP Termination with new controller certificate - Android not connecting

Re: EAP-PEAP Termination with new controller certificate - Android not connecting

Re: EAP-PEAP Termination with new controller certificate - Android not connecting

Re: EAP-PEAP Termination with new controller certificate - Android not connecting

Re: EAP-PEAP Termination with new controller certificate - Android not connecting

Re: EAP-PEAP Termination with new controller certificate - Android not connecting

Re: EAP-PEAP Termination with new controller certificate - Android not connecting

AP Management lockdown

Securing Computers in the Logon Role

Best way to force guests to use a proxy?

Bulk Provisioning

Channel Bonding on AP-105 for 802.11n networks

COTD: Boot options for controllers

COTD: SNMP events

Admin Password Flaw with 3.1.0.7 upgrade

Automated WEP key rotation ?

Upgrade problems...

WPA-PSK and VLAN assignment via MAC address

Cisco ACS and Aruba Radius Auth

Making DHCP mandatory on Aruba WLAN

AirWave SSH "on_controllers" command

VMware Wireless Bridging

Aruba Instant 6.4.2.6-4.1.1.11 Released 11/27/2015

Aruba Instant 6.4.2.6-4.1.1.10 Released 9/28/15

Re: ArubaOS Downloads

Remote AP Networks

Indoor 802.11n Site Survey and Planning

Base Designs Lab Setup for Validated Reference Design

Optimizing Aruba WLANs for Roaming Devices

Campus Redundancy Model

Wireless Access

EAP-PEAP Termination with new controller certificate - Android not connecting

EAP-PEAP Termination with new controller certificate - Android not connecting

Re: EAP-PEAP Termination with new controller certificate - Android not connecting

Re: EAP-PEAP Termination with new controller certificate - Android not connecting

Re: EAP-PEAP Termination with new controller certificate - Android not connecting

Re: EAP-PEAP Termination with new controller certificate - Android not connecting

Re: EAP-PEAP Termination with new controller certificate - Android not connecting

Re: EAP-PEAP Termination with new controller certificate - Android not connecting

Follow Us