Guest

Preview Tool

Cisco Bug: CSCuw37942 - Local EAP hardening

Last Modified

May 21, 2018

Products (1)

  • Cisco 5500 Series Wireless Controllers

Known Affected Releases

8.2(1.64)

Description (partial)

Symptom:
Symptom 1:
A WLC may unexpectedly reload with crash file similar to the following:

Task Name:      EAP Framework
Reason:         System Crash
[ ... ]
------------------------------------------------------------
Analysis of Failure:



------------------------------------------------------------
System Stack

0x408f11 0x40867d 0x403347 0x1cc11f0
0x1cf7d10 0xd62a9a 0x10916d0 0x107fa12
0x108e998 0x15602f9 0x15604a0 0x15610be
0x15386f7 0x15386f7 0x15386f7 0x1090537
0xd6e62f 0x1cbc982 0x1d17ba9 0x1d17ba9
0x1d17ba9 0x1d17ba9 0x1d17ba9 0x1d17ba9
0x1d17ba9

Symptom 2:
EAP negotiations between the WLC Local auth server and a client may fail following a session-timeout.  A message similar to the following is seen in the msglog:

*Dot1x_NW_MsgTask_0: Apr 14 14:52:36.930: #DOT1X-3-ABORT_AUTH: 1x_bauth_sm.c:449  Authentication Aborted for client 8c:70:5a:58:fd:60

Conditions:
Using the AireOS local authentication server.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.