Controllerless Networks

Customer is reporting some odd behaviour that happens from time to time on their staff connection that uses EAP-PEAP.

Every now and then, they will be presented with a warning to trust the cert from the APs.

I have a feeling this is the authentication-survivability feature kicking in, which would explain the cert from the AP being presented.  Clearpass is still up and running and not a remote server across the wan or anything.  This is happening for Windows phone, iOS and Android, and just occurs randomly and several times throughout the day.

So this caching feature, is it on an ap basis, or cached on the VC?

For now, I've asked the customer to just disable it.

IAP225 - 6.4.2.0-4.1.1.0

Is the VC having issues reaching the CPPM server ?

This should be on the VC not per AP basis ?

For how long to do you have that cache value set for 

no issues with the network as far as I know.

The user guide sort of implies that it is cached on the IAP.  It doesn't specifically say it is cached on the VC.

Cache was set for 72 hours.

So after disabling authentication-survivability, the informal feedback has gone from unstable to pretty good.

how do you find the cache value on the VC?