Meraki

Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Computer Cannot Connect to Meraki RADIUS

larsdueck
Comes here often
‎Oct 11 2023 12:03 PM
‎Oct 11 2023 12:03 PM

Computer Cannot Connect to Meraki RADIUS

Any ideas what's happening here?

 

We have a MacOS computer that refuses to connect to the RADIUS (email and PW credentials) via an AP (1 of 4). EAPoL timeout error.

0 Kudos
8 Replies 8
alemabrahao
Kind of a big deal
Kind of a big deal
‎Oct 11 2023 12:12 PM
‎Oct 11 2023 12:12 PM

EAPoL timeout indicates an 802.1X issue. How is the SSID configuration? Are 802.11w and 802.11r enabled?

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
In response to alemabrahao
larsdueck
Comes here often
‎Oct 11 2023 12:24 PM
‎Oct 11 2023 12:24 PM

Those are both disabled on the SSID.

0 Kudos
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Oct 11 2023 12:58 PM
‎Oct 11 2023 12:58 PM

Does the RADIUS server say it gave permission (sent an ACCESS_ACCEPT)?  If it denied permission, why?

 

Does the Mac have the CA certificate loaded that was used to create the certificate that is being used by the RADIUS server?

0 Kudos
In response to PhilipDAth
larsdueck
Comes here often
‎Oct 11 2023 1:03 PM
‎Oct 11 2023 1:03 PM

This is what I see in the dashboard:

 

auth_mode='wpa2-802.1x' vlan_id='xx' radius_proto='ipv4' radius_ip='x.x.x.x' reason='eapol_timeout' radio='1' vap='2' channel='157' rssi='44'

 

No certificate. Connects with email and PW (WPA2).

0 Kudos
In response to PhilipDAth
alemabrahao
Kind of a big deal
Kind of a big deal
‎Oct 11 2023 1:13 PM
‎Oct 11 2023 1:13 PM

@PhilipDAth I think the Meraki Radius is being used, correct @larsdueck ?

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
In response to alemabrahao
larsdueck
Comes here often
‎Oct 11 2023 1:16 PM
‎Oct 11 2023 1:16 PM

That is correct.

0 Kudos
rhbirkelund
Kind of a big deal
Kind of a big deal
‎Oct 11 2023 11:40 PM
‎Oct 11 2023 11:40 PM

So you have 1 MacOS, which cannot connect to a 802.1x SSID with EAP-PEAP using Local Authentication on 1 AP, but it works on the other 3?

And you have other MacOS pcs that do work on all four APs?

 

I'd try to look into the settings on the one MacOS pc, and perhaps factory reset that one AP; and see if that does the trick.

LinkedIn ::: https://blog.rhbirkelund.dk/

Like what you see? - Give a Kudo ## Did it answer your question? - Mark it as a Solution 🙂

All code examples are provided as is. Responsibility for Code execution lies solely your own.
0 Kudos
In response to rhbirkelund
larsdueck
Comes here often
‎Oct 12 2023 6:30 AM
‎Oct 12 2023 6:30 AM

Does not work with any AP at the point after further testing. Other Macs/PC's can connect. Can't see what would be wrong with the Mac at this point.

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.