IPHONE 802.1X AUTHENTICATION GOES DOWN
Hello,
On a customer site there is the same kind of probleme only with IPHONE, and bad luck, only the top managment is using IPHONE...
The Wi-Fi authentatication of the IPHONE is done using 802.1X/RADIUS NPS/AD. The radius used is not ClearPass, but a Microsoft NPS Radius (a service included Windows Active DIrectory server).
When the IPHONE is well athenticated, the role in radius is "CORP", and all works well.
But , after a moment if the Wi-Fi Iphone connexion goes down, due to an inactivity timer, or the guy is travelling in a lift, or in stairs, the Iphone is no more authenticated, and still unathenticated.
In fact, you can see inradius logs, when the Wi-Fi connexion is coming back on the IPHONE, the IPHONE device is no more authenticated in CORP role, but in DENY_ALL.
It looks like the IPHONE do not play his 802.1X credential when the Wi-Fi physical network connexion is back.
The only way I found to force the IPHONE to reauthentify 802.1X again, is to swith OFF/ON the Wi-Fi on the Iphone control panel, and immediatly the IPHONE play 802.1X reconnexion the role "CORP" is back.
Does anybody have an idea to solve this problem ?
(Wi-Fi ARUBA 130APs: AP105,205,225 - cluster CTRL 7210 - version 6.5.4.3)