Guest

Preview Tool

Cisco Bug: CSCtb14169 - Some LEAP Clients require authentication open with EAP

Last Modified

Apr 18, 2017

Products (1)

  • Cisco Aironet 1200 Series

Known Affected Releases

12.4(10b)JA

Description (partial)

Symptom:
7921 phone starting release 1.3.2 will no longer authenticate with an Access Point if "authentication open eap <method-name>" is not configured.

It will be observed that the AP doesn't send EAPOL Request-Identity nor will reply to the EAPOL Start of the phone.

While configuring an SSID with "authentication open" a message like the following is displayed by the AP:

WDS(config-ssid)#authentication open 
SSID CONFIG WARNING: [VOICE]: If radio clients are using EAP-FAST, AUTH OPEN with EAP should also be configured.
This message should also include LEAP because it is not accurate anymore.

Post 1.3.2 7921 Phone code Failing to authenticate with following configuration on AP:

dot11 ssid VOICE
   authentication open
   authentication network-eap eap_methods1 
   authentication key-management cckm "or" wpa
   admit-traffic
Post 1.3.2 7921 Phone code Succeeding to authenticate with following configuration on AP:

dot11 ssid VOICE
   authentication open eap eap_methods1 
   authentication network-eap eap_methods1 
   authentication key-management cckm "or" wpa
   admit-traffic

Conditions:
7921 phone with code after 1.3.2
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.