Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Cisco AKM

This thread has been viewed 0 times

  • 1.  Cisco AKM

    Posted May 29, 2014 01:15 PM

    Is anyone familiar with Cisco AKM? The reason I ask is that I am having difficulty with Cisco 7921g Wifi phones - the phones have AKM enabled in a WPA2/AES configuration, and I believe that AKM is getting in the way of network access. As I understand AKM, it was designed back in the day to allow Cisco access points to provide the authentication for VoWifi phones based on keys that were statically configured on the access point itself. However, now that the customer has moved to an Aruba wireless network, they have to wait on average about 7-10 minutes when a phone initially boots before it can be used.

     

    The VRD for Cisco 792x phones has been implemented.

     

    Just wondering if anyone out here has experience with Cisco AKM and can provide some guidance, as there is a lack of Cisco documentation on this particular feature.

     

    Cheers,

     

    Shane



  • 2.  RE: Cisco AKM

    EMPLOYEE
    Posted May 29, 2014 01:29 PM
    Are you able to do a packet capture or user debug for the device?


  • 3.  RE: Cisco AKM

    Posted May 29, 2014 03:05 PM

    Negative to both. Attempting to obtain a new user debug.

     

    The issue is exactly the same as this: http://community.arubanetworks.com/t5/Unified-Wired-Wireless-Access/Cisco-7921-Phones-Fail-Initial-Associations-Denied-Ageout/td-p/54874

     

    didn't see a posted solution - wasn't sure if anyone has experience with AKM/Cisco 7921's and Aruba