Cisco Systems Cisco 350AP and 802.1x EAP
Bookmark this page:  YahooMyWeb Yahoo!  Google Google  Windows Live Favorites Windows Live  del.icio.us del.icio.us  digg digg  Add to Netscape Netscape
Subject Author Date
Cisco 350AP and 802.1x EAP mike 04-03-06
Posted by mike on April 3, 2006, 11:11 am
Please log in for more thread options
We are currently using stack WEP, and I would like to start using
802.1x with dynamic rotating WEP keys.  We are out of maintenance, and
we are running 12.02T1 of the VxWorks based OS.

I am having trouble getting this to work. I know my Radius server and
supplicants are good, because we use the same supplicants and Radius
server for our newer wireless system without any problems.  I am trying
to figure out the right set of configuration options, and I can not get
pass the following warning message when a client tries to associate:
Station xx:xx:xx:xx:xx Failed Authentication, status "Unsupported
Authentication Algorithm".

If someone could please guide me in the right direction, I would really
appreciate it.  Thx.

-mike


Posted by Uli Link on April 3, 2006, 12:09 pm
Please log in for more thread options
mike schrieb:


First I would suggest upgrading to 12.04 or 12.05 of VxWorks Firmware.


Try "require EAP" under the "open Authentication" in addition to
"Network-EAP".

Network EAP is only for LEAP with Cisco client adapters. Many third
party adapter do "open authentication with EAP".

--
Uli


Posted by mike on April 3, 2006, 1:51 pm
Please log in for more thread options
The APs are no longer under mainteance, so I can not upgrade.

'Accept Authentication type:' and 'Require EAP:' are both set to open.
 I have set the broadcast keys to rotate every 30 minutes.

Do I put anything in the key field for WEP key 1 or do I leave it
blank?

I am getting closer.  I know get messages on the main page that:
Station=xx:xx:xx:xx:xx user="domain\userid" Failed EAP-Authentication

My Radius server is reporting an incorrect login fro the userid.

I can use this very same laptop and userid to authenticate to our
current wireless system, so I am suspecting it is something still with
the 350 configuration.  Any ideas?

-mike


Posted by Uli Link on April 3, 2006, 4:49 pm
Please log in for more thread options
mike schrieb:


The final VxWorks firmware was released as a free download in Oct 2004.
There is an IOS Conversion Image for the AIR350 APs.


When broadcast key rotation is enabled, you'll don't need to set any WEP
key manually-
but set encryption to required.



What EAP type, what supplicant, what WLAN card?

--
Uli

Posted by mike on April 4, 2006, 1:20 pm
Please log in for more thread options
I upgraded the AP to 12.05 this afternoon.  Thanks for the information
on that.

A WEP key was previous entered in the field.  The field is blank for
key 1, and I am not sure how I can zero it out or reset it.

We are using EAP-PEAP and I am using the Windows XP SP2 supplicant.  My
WLAN card is a Dell Trumobile 1300.  I am running the most current
Truemobile driver from Dell's website.

You have been very helpful.  Thx.


Similar ThreadsPosted
Cisco 350AP and 802.1x EAP April 3, 2006, 11:11 am
Unable to load Cisco 350AP Firmware June 21, 2006, 7:05 pm
Business VoIP Solutions Using Cisco Gateways, Cisco Call Agent, And Cisco IP Phones October 2, 2007, 8:02 pm
Discussion about segregating bandwidth with Cisco 7513, Cisco 3750 and Cisco 3640 June 17, 2006, 8:34 am
good cisco and juniper IPS site for intrusion prevention and cisco switch info January 5, 2007, 4:59 pm
Re: Q: Cisco AP 1131 -- "Unsupported device type" error in Cisco Network Assistant November 27, 2007, 1:19 pm
Connect a cisco catalyst 3524XL to a Cisco 6500 ? Auto-MDI or crossover cable August 15, 2008, 6:40 am
Re: Connect a cisco catalyst 3524XL to a Cisco 6500 ? Auto-MDI or crossover cable August 15, 2008, 7:32 am
Cisco 2970 strange traffic problem - stumped cisco support February 10, 2005, 12:19 pm
Cisco Custom Historical Report for Cisco Customer Response Applications January 17, 2006, 12:34 pm
SNMP OIDs required for Cisco 1200 and Cisco 1100 series APs November 7, 2006, 9:44 am
Cisco owned (linksys wet11b) is cisco failing to see market demands? March 10, 2005, 5:02 pm
Respected Cisco trainer Wendell Odom blogging for Network World's Cisco Subnet September 10, 2007, 5:47 pm
Cisco Systems - Facebook Group - Cisco Developer Contest - Win $100,000 Developing applications for Linux December 13, 2008, 1:20 pm
VPN Connection Problems between Cisco PIX 506E and Cisco VPN Concentrator 3005 February 15, 2005, 9:03 am
Latest PostsForumRSS
Re: 871W: Wi-fi to Wi-fi unreliable Wireless Networking
c3560 port configuration Cisco Systems
Comics Previews iPhone 5 [telecom] General Telecommunications Forum
Insteon and other X10 alternatives? General Home Automation
Telecom Hardware Cisco Certification
Selling Routes “India Bangladesh & Sri Lanka” Voice-Over-IP
USB _to_ RJ45 (not from) connection Ethernet LAN
FAQ: Maximizing cable modem or DSL speed Cable Modems
CASH FOR CISCO - I BUY USED AND NEW EQUIPMENT & LOTS MOR... Telecom Technical
FAQ: Maximizing cable modem or DSL speed Digital Subscriber Line
How to set up Meridian 1 to "provide clock" to a C... Nortel Networks
NFL Soccer Jersey, NBA NHL Sports Jersey From China LAN and Telecom Cabling
Control Hot Water Circ Pump With X10? Home Automation
Text file to automate restoring a dropped VPN connection. Virtual Private Networks
Home Theater Installation Home Theater
Re: The Turkic Languages in a Nutshell Fiber Optics
sip Video Conferencing
Residential Cabling Guide Home Cabling Guide

Finally, an instantly downloadable book that saves you thousands in home improvement dollars! Enjoy living in 21st century technology-advanced home while increasing its selling value and competitive advantage on the real estate market. Whether your cabling is for home office or high-tech leisure, you can wire your home yourself or learn "wirish" to speak with your cabling contractors in their language!

Click Here to learn more