We are seeing more clients with DHCP issue. Devices are able to associate and authenticate but will not get an IP address.
(wcFIDF3) #show log all | include 6c:1e:d5
Apr 24 10:44:45 2024 stm[7292]: <501093> <NOTI> |AP apLB2171@10.2.114.40 stm| Auth success: d8:9c:67:6c:1e:d5: AP 10.2.114.40-68:28:cf:cc:96:80-apLB2171
Apr 24 10:44:45 2024 stm[7292]: <501095> <NOTI> |AP apLB2171@10.2.114.40 stm| Assoc request @ 10:44:45.069986: d8:9c:67:6c:1e:d5 (SN 0): AP 10.2.114.40-68:28:cf:cc:96:80-apLB2171
Apr 24 10:44:45 2024 stm[3758]: <501100> <3758> <NOTI> |stm| Assoc success @ 10:44:45.084913: d8:9c:67:6c:1e:d5: AP 10.2.114.40-68:28:cf:cc:96:80-apLB2171
Apr 24 10:44:45 2024 authmgr[3736]: <522295> <5326> <DBUG> |authmgr| Auth GSM : USER_STA event 0 for user d8:9c:67:6c:1e:d5
Apr 24 10:44:45 2024 authmgr[3736]: <522004> <5326> <DBUG> |authmgr| Handling STA UP for d8:9c:67:6c:1e:d5
Apr 24 10:44:45 2024 authmgr[3736]: <522035> <5326> <INFO> |authmgr| MAC=d8:9c:67:6c:1e:d5 Station UP: BSSID=68:28:cf:cc:96:80 ESSID=HousePublic VLAN=132 AP-name=apLB2171 u-encr-alg=0x20 m-encr-alg=0x20 at 10:44:44.273576
Apr 24 10:44:45 2024 authmgr[3736]: <522004> <5326> <DBUG> |authmgr| auth_cluster_is_active_uac_or_disconnected: essid HousePublic b_num 167 mac d8:9c:67:6c:1e:d5
Apr 24 10:44:45 2024 authmgr[3736]: <522077> <5326> <DBUG> |authmgr| MAC=d8:9c:67:6c:1e:d5 ingress 0x102be (tunnel 702), u_encr 0x20, m_encr 0x20, slotport 0x2100 , type: local, FW mode: 0, AP IP: 10.2.114.40 mdie 0 ft_complete 0
Apr 24 10:44:45 2024 authmgr[3736]: <522264> <5326> <DBUG> |authmgr| "MAC:d8:9c:67:6c:1e:d5: Allocating UUID: 204c030290a00000003149dd
Apr 24 10:44:45 2024 authmgr[3736]: <522004> <5326> <DBUG> |authmgr| ac_active_add_mac_to_bucket: station d8:9c:67:6c:1e:d5 in essid HousePublic (mac_user 0x4ae09ac) being added to bucket-map
Apr 24 10:44:45 2024 authmgr[3736]: <522004> <5326> <DBUG> |authmgr| auth_cluster_add_active_mac: essid HousePublic b_num 167 mu_mac d8:9c:67:6c:1e:d5 macuser 0x4ae09ac
Apr 24 10:44:45 2024 authmgr[3736]: <522004> <5326> <DBUG> |authmgr| handle_sta_up_dn: mac d8:9c:67:6c:1e:d5 macuser 00x4ae09ac essid HousePublic user->essid HousePublic repready 0 repkey -1
Apr 24 10:44:45 2024 authmgr[3736]: <522258> <5326> <DBUG> |authmgr| "VDR - Add to history of user user d8:9c:67:6c:1e:d5 vlan 0 derivation_type Reset VLANs for Station up index 0.
Apr 24 10:44:45 2024 authmgr[3736]: <522255> <5326> <DBUG> |authmgr| "VDR - set vlan in user for d8:9c:67:6c:1e:d5 vlan 132 fwdmode 0 derivation_type Default VLAN.
Apr 24 10:44:45 2024 authmgr[3736]: <522258> <5326> <DBUG> |authmgr| "VDR - Add to history of user user d8:9c:67:6c:1e:d5 vlan 132 derivation_type Default VLAN index 1.
Apr 24 10:44:45 2024 authmgr[3736]: <522255> <5326> <DBUG> |authmgr| "VDR - set vlan in user for d8:9c:67:6c:1e:d5 vlan 132 fwdmode 0 derivation_type Current VLAN updated.
Apr 24 10:44:45 2024 authmgr[3736]: <522258> <5326> <DBUG> |authmgr| "VDR - Add to history of user user d8:9c:67:6c:1e:d5 vlan 132 derivation_type Current VLAN updated index 2.
Apr 24 10:44:45 2024 authmgr[3736]: <522158> <5326> <DBUG> |authmgr| Role Derivation for user N/A-d8:9c:67:6c:1e:d5- N/A Set AAA profile defaults.
Apr 24 10:44:45 2024 authmgr[3736]: <522142> <5326> <DBUG> |authmgr| Setting default role to authenticated for user d8:9c:67:6c:1e:d5".
Apr 24 10:44:45 2024 authmgr[3736]: <522127> <5326> <DBUG> |authmgr| {L2} Update role from logon to authenticated for IP=N/A, MAC=d8:9c:67:6c:1e:d5.
Apr 24 10:44:45 2024 authmgr[3736]: <522049> <5326> <INFO> |authmgr| MAC=d8:9c:67:6c:1e:d5,IP=N/A User role updated, existing Role=logon/none, new Role=authenticated/none, reason=Set AAA profile defaults
Apr 24 10:44:45 2024 authmgr[3736]: <522341> <5326> <DBUG> |authmgr| Client d8:9c:67:6c:1e:d5 idle timeout 300 profile global
Apr 24 10:44:45 2024 authmgr[3736]: <522246> <5326> <DBUG> |authmgr| Idle timeout should be driven by STM for MAC d8:9c:67:6c:1e:d5.
Apr 24 10:44:45 2024 authmgr[3736]: <524141> <5326> <DBUG> |authmgr| clr_pmkcache_ft():835: MAC:d8:9c:67:6c:1e:d5 BSS:68:28:cf:cc:96:80
Apr 24 10:44:45 2024 stm[7292]: <501100> <NOTI> |AP apLB2171@10.2.114.40 stm| Assoc success @ 10:44:45.079287: d8:9c:67:6c:1e:d5: AP 10.2.114.40-68:28:cf:cc:96:80-apLB2171
Apr 24 10:44:45 2024 authmgr[3736]: <522254> <5326> <DBUG> |authmgr| VDR - mac d8:9c:67:6c:1e:d5 rolename authenticated fwdmode 0 derivation_type Initial Role Contained vp not present.
Apr 24 10:44:45 2024 authmgr[3736]: <522258> <5326> <DBUG> |authmgr| "VDR - Add to history of user user d8:9c:67:6c:1e:d5 vlan 0 derivation_type Reset Role Based VLANs index 3.
Apr 24 10:44:45 2024 authmgr[3736]: <522344> <5326> <DBUG> |authmgr| handle_sta_up_dn (3942): rtts user=d8:9c:67:6c:1e:d5 enabled=0 initial tput=277333
Apr 24 10:44:45 2024 authmgr[3736]: <524124> <5326> <DBUG> |authmgr| auth_dot1x_supplicant_up(): MAC:d8:9c:67:6c:1e:d5, pmkid_present:False, pmkid:N/A
Apr 24 10:44:45 2024 authmgr[3736]: <522255> <5326> <DBUG> |authmgr| "VDR - set vlan in user for d8:9c:67:6c:1e:d5 vlan 132 fwdmode 0 derivation_type Current VLAN updated.
Apr 24 10:44:45 2024 authmgr[3736]: <522258> <5326> <DBUG> |authmgr| "VDR - Add to history of user user d8:9c:67:6c:1e:d5 vlan 132 derivation_type Current VLAN updated index 4.
Apr 24 10:44:45 2024 authmgr[3736]: <522260> <5326> <DBUG> |authmgr| "VDR - Cur VLAN updated d8:9c:67:6c:1e:d5 mob 0 inform 1 remote 0 wired 0 defvlan 132 exportedvlan 0 curvlan 132.
Apr 24 10:44:45 2024 authmgr[3736]: <522004> <5326> <DBUG> |authmgr| use mac d8:9c:67:6c:1e:d5 bssid 68:28:cf:cc:96:80 essid HousePublic msg mac d8:9c:67:6c:1e:d5 bssid 68:28:cf:cc:96:80 essid HousePublic
Apr 24 10:44:45 2024 dot1x-proc:2[4399]: <522004> <4399> <DBUG> |dot1x-proc:2| DO_HANDSHAKE: Dot1x user mac d8:9c:67:6c:1e:d5 bssid 68:28:cf:cc:96:80 essid HousePublic sta flags 0 fw_mode 0 apname apLB2171 group AG-LHOB-24OFF server_group server profile default-psk vlan 132 curacl_name authenticated ingress 66238 ft 0
Apr 24 10:44:45 2024 dot1x-proc:2[4399]: <522004> <4399> <DBUG> |dot1x-proc:2| handle_do_handshake for user d8:9c:67:6c:1e:d5
Apr 24 10:44:45 2024 authmgr[3736]: <522308> <5326> <DBUG> |authmgr| Device Type index derivation for d8:9c:67:6c:1e:d5 : dhcp (0,0,0) oui (0,0) ua (0,0,0) derived (0):
Apr 24 10:44:45 2024 authmgr[3736]: <522050> <5326> <INFO> |authmgr| MAC=d8:9c:67:6c:1e:d5,IP=N/A User data downloaded to datapath, new Role=authenticated/87, bw Contract=0/0, reason=layer 2 event driven download, Downloaded value for idle-timeout=10
Apr 24 10:44:45 2024 authmgr[3736]: <522004> <5326> <DBUG> |authmgr| auth_gsm_publish_channels: mac d8:9c:67:6c:1e:d5 publish_list 3 user VALID macuser VALID ipuser NULL
Apr 24 10:44:45 2024 authmgr[3736]: <522301> <5326> <DBUG> |authmgr| Auth GSM : USER publish for uuid 204c030290a00000003149dd mac d8:9c:67:6c:1e:d5 name role authenticated devtype wired 0 authtype 0 subtype 0 encrypt-type 9 conn-port 8448 fwd-mode 0 roam 0 repkey -1
Apr 24 10:44:45 2024 authmgr[3736]: <522287> <5326> <DBUG> |authmgr| Auth GSM : MAC_USER publish for mac d8:9c:67:6c:1e:d5 bssid 68:28:cf:cc:96:80 vlan 132 type 1 data-ready 0 HA-IP n.a
Apr 24 10:44:45 2024 authmgr[3736]: <522242> <5326> <DBUG> |authmgr| MAC=d8:9c:67:6c:1e:d5 Station Created Update MMS: BSSID=68:28:cf:cc:96:80 ESSID=HousePublic VLAN=132 AP-name=apLB2171
Apr 24 10:44:45 2024 dot1x-proc:2[4399]: <526162> <4399> <DBUG> |dot1x-proc:2| wpa2_tx_eapolkey_mesg3:743 User-mac d8:9c:67:6c:1e:d5 bssid 68:28:cf:cc:96:80 RSNXE f4 01 20 PSK client,Opmode-Transition enabled
Apr 24 10:44:45 2024 authmgr[3736]: <522004> <3736> <DBUG> |authmgr| auth_handle_dot1x_key_handshake_data Updating PMK for client d8:9c:67:6c:1e:d5
Apr 24 10:44:45 2024 authmgr[3736]: <522004> <3736> <DBUG> |authmgr| Copying dot1x loginfo of size 88 with 4 entries to user d8:9c:67:6c:1e:d5
Apr 24 10:44:45 2024 authmgr[3736]: <522004> <3736> <DBUG> |authmgr| User published after receiving key data d8:9c:67:6c:1e:d5
Apr 24 10:45:01 2024 stm[7292]: <501102> <NOTI> |AP apLB2171@10.2.114.40 stm| Disassoc from sta: d8:9c:67:6c:1e:d5: AP 10.2.114.40-68:28:cf:cc:96:80-apLB2171 Reason STA has left and is disassociated
Apr 24 10:45:01 2024 authmgr[3736]: <522296> <5326> <DBUG> |authmgr| Auth GSM : USER_STA delete event for user d8:9c:67:6c:1e:d5 age 0 deauth_reason 8
Apr 24 10:45:01 2024 authmgr[3736]: <522004> <5326> <DBUG> |authmgr| Delete STA: mac d8:9c:67:6c:1e:d5 Reason 8
Apr 24 10:45:01 2024 authmgr[3736]: <522036> <5326> <INFO> |authmgr| MAC=d8:9c:67:6c:1e:d5 Station DN: BSSID=68:28:cf:cc:96:80 ESSID=HousePublic VLAN=132 AP-name=apLB2171 reason=8 at 10:45:00.580576
Apr 24 10:45:01 2024 authmgr[3736]: <522234> <5326> <DBUG> |authmgr| Setting idle timer for user d8:9c:67:6c:1e:d5 to 300 seconds (idle timeout: 300 ageout: 0).
Apr 24 10:45:01 2024 authmgr[3736]: <522152> <5326> <DBUG> |authmgr| station free: bssid=68:28:cf:cc:96:80, mac=d8:9c:67:6c:1e:d5.
Apr 24 10:45:01 2024 authmgr[3736]: <522244> <5326> <DBUG> |authmgr| MAC=d8:9c:67:6c:1e:d5 Station Deleted Update MMS
Apr 24 10:45:01 2024 stm[3758]: <501000> <3758> <DBUG> |stm| Station d8:9c:67:6c:1e:d5: Clearing state
Apr 24 10:45:01 2024 authmgr[3736]: <522004> <5326> <DBUG> |authmgr| d8:9c:67:6c:1e:d5: station datapath entry deleted
Apr 24 10:45:01 2024 authmgr[3736]: <522004> <5326> <DBUG> |authmgr| mac_station_free: Sta->essid HousePublic mu_mac d8:9c:67:6c:1e:d5 macuser 0x0x4ae09ac
Apr 24 10:45:01 2024 authmgr[3736]: <522004> <5326> <DBUG> |authmgr| ac_active_remove_mac_from_bucket: station d8:9c:67:6c:1e:d5 in essid HousePublic (mh_entry found True addr 0x4ae09ac) removed in bucket-map 167
Apr 24 10:45:01 2024 authmgr[3736]: <522004> <5326> <DBUG> |authmgr| auth_cluster_del_active_mac essid HousePublic b_num 167 mu_mac d8:9c:67:6c:1e:d5 mac_user 0x4ae09ac cluster_enabled=1
Apr 24 10:45:01 2024 authmgr[3736]: <522290> <5326> <DBUG> |authmgr| Auth GSM : MAC_USER delete for mac d8:9c:67:6c:1e:d5
Apr 24 10:45:01 2024 authmgr[3736]: <522303> <5326> <DBUG> |authmgr| Auth GSM : USER delete for mac d8:9c:67:6c:1e:d5 uuid 204c030290a00000003149dd
Apr 24 10:45:01 2024 stm[7292]: <501000> <DBUG> |AP apLB2171@10.2.114.40 stm| Station d8:9c:67:6c:1e:d5: Clearing state
Apr 24 10:45:01 2024 stm[7292]: <501093> <NOTI> |AP apLB2171@10.2.114.40 stm| Auth success: d8:9c:67:6c:1e:d5: AP 10.2.114.40-68:28:cf:cc:96:80-apLB2171
Apr 24 10:45:01 2024 stm[7292]: <501095> <NOTI> |AP apLB2171@10.2.114.40 stm| Assoc request @ 10:45:01.496224: d8:9c:67:6c:1e:d5 (SN 0): AP 10.2.114.40-68:28:cf:cc:96:80-apLB2171
Apr 24 10:45:01 2024 stm[3758]: <501100> <3758> <NOTI> |stm| Assoc success @ 10:45:01.509965: d8:9c:67:6c:1e:d5: AP 10.2.114.40-68:28:cf:cc:96:80-apLB2171
Original Message:
Sent: Apr 17, 2024 12:36 PM
From: alexb
Subject: Random clients not getting DHCP address
Hello all,
We are running 8.10.0.10.
I have a few devices, Macbooks/Windows laptops that pass authentication but wont get DHCP.
These devices work with other non-Aruba wireless but not sure why DHCP fails when connecting to Aruba.
So far, the issue looks isolated since we have thousands other clients that work just fine.
I tried 'sudo ifconfig en0 ether <random mac>' on Macbook but failed so I couldnt verify if issue is tied to specific Mac address.
Anyone else seen this or have a workaround?
Thanks,
Alex