Wireless Access

last person joined: 20 hours ago 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

Controller ignore MAC authentication even disable "L2 Authentication Fail Through"

This thread has been viewed 3 times

  • 1.  Controller ignore MAC authentication even disable "L2 Authentication Fail Through"

    Posted Oct 29, 2012 12:50 AM

    Hi,

    I've set up an SSID with MAC + PSK authentication. MAC authentication will be  done via a third-party radius server. It seems that the controller ignore the MAC authentication response even I disable "L2 Authentication Fail Through", it continue with the PSK authentication.

     

    I'm using AOS 6.1.3.0, below is the log from "logging level debugging user"

     

    Oct 29 15:07:53 :522042:  <NOTI> |authmgr|  User Authentication Failed: username=a4:d1:d2:9d:d3:36 MAC=a4:d1:d2:9d:d3:36 IP=0.0.0.0 auth method=MAC auth server=CU-xxxxxxx
    Oct 29 15:07:53 :522004:  <DBUG> |authmgr|  skipping mac : a4:d1:d2:9d:d3:36, from AP : 0.0.0.0, with authtype : MAC
    Oct 29 15:07:53 :522004:  <DBUG> |authmgr|  MAC=a4:d1:d2:9d:d3:36 IP=0.0.0.0: MAC auth fail: entry-type=L2, bssid=00:24:6c:ca:e8:f2
    Oct 29 15:07:53 :522004:  <DBUG> |authmgr|  Mac Auth failed wired 0 curvlan 863, UDR vlan 0
    Oct 29 15:07:53 :522004:  <DBUG> |authmgr|  Mac Auth failed, continuing with dot1x

     

    Would you please shed some lights ?

     

    Thank you,

    Peter



  • 2.  RE: Controller ignore MAC authentication even disable "L2 Authentication Fail Through"

    EMPLOYEE
    Posted Oct 30, 2012 01:35 AM

    I think you should open a case with support after making sure you are using the correct AAA profile.