Cisco Systems OL-8376-01 manual Peap

Page 103

Chapter 2 Fault Descriptions

AAA Server Faults

Table 2-6

AAA Server Faults (continued)

 

 

 

 

 

 

 

Fault Description

Server Type

Explanation

Related Setting

Recommended Action

 

 

 

 

 

 

LEAP server is

 

LEAP

The fault threshold set for

Manage Fault

Verify that the fault threshold is set

Overloaded

 

 

the overloaded state has

Settings > AAA >

correctly.

 

 

 

been exceeded.

LEAP > Response

If the threshold is set correctly,

 

 

 

 

Time

 

 

 

When this fault has been

review your network to determine

 

 

 

 

 

 

 

cleared, the following

 

the action necessary to clear the

 

 

 

message displays: LEAP

 

fault condition.

 

 

 

server is OK.

 

 

 

 

 

 

 

 

PAC is either

 

EAP-FAST

PAC file is either invalid or

This fault is not

Generate a new PAC file from the

invalid or expired.

 

expired.

generated based on

EAP-FAST server you are trying to

Please reimport

 

 

 

a threshold

monitor and make sure that the

new PAC file

 

 

 

violation.

expiry time is set properly when

 

 

 

 

 

generating the PAC file.

 

 

 

 

 

PEAP server is not

PEAP

Can be caused by any of the

Manage Fault

Check the server configuration and

available

 

 

following reasons:

Settings > AAA >

make sure that:

 

 

 

PEAP monitoring is not

PEAP > Response

PEAP monitoring is enabled

 

 

 

enabled.

Time

under Manage Fault Settings >

 

 

 

 

 

 

 

WLSE IP Address is not

 

AAA> PEAP > Response

 

 

 

 

time.

 

 

 

configured as a NAS on

 

 

 

 

 

 

 

 

 

the server.

 

WLSE IP address is

 

 

 

Shared secret key does

 

configured as NAS on the

 

 

 

 

authentication server.

 

 

 

not match with the key

 

 

 

 

 

 

 

 

 

configured on the

 

If both NICs in the WLSE are

 

 

 

server.

 

assigned an IP, both should be

 

 

 

Server is unreachable.

 

added as NAS in the PEAP

 

 

 

 

authentication server.

 

 

 

EAP-GTC is required

 

 

 

 

 

Shared secret key matches the

 

 

 

for reports and faults.

 

 

 

 

 

key configured on the server.

 

 

 

When this fault has been

 

 

 

 

 

WLSE requires EAP-GTC for

 

 

 

cleared, the following

 

 

 

 

 

PEAP monitoring, which is

 

 

 

message displays: PEAP

 

 

 

 

 

used for PEAP-related reports

 

 

 

server is available

 

 

 

 

 

and faults. They will not work

 

 

 

 

 

 

 

 

 

 

with MS-CHAPV2.

 

 

 

 

 

 

PEAP server is

 

PEAP

The fault threshold set for

Manage Fault

Verify that the fault threshold is set

Degraded

 

 

the degraded state has been

Settings > AAA >

correctly.

 

 

 

exceeded.

PEAP > Response

If the threshold is set correctly,

 

 

 

 

Time

 

 

 

When this fault has been

review your network to determine

 

 

 

 

 

 

 

cleared, the following

 

the action necessary to clear the

 

 

 

message displays: PEAP

 

fault condition.

 

 

 

server is OK.

 

 

 

 

 

 

 

 

FAQ and Troubleshooting Guide for the CiscoWorks Wireless LAN Solution Engine

 

OL-8376-01

2-29

 

 

 

Page 102 Page 104
Image 103
Page 102 Page 104
Contents Customer Order Number OL-8376-01 Corporate HeadquartersCopyright 2006 Cisco Systems, Inc. All rights reserved N T E N T S Fault Descriptions Italic font AudienceConventions ConventionAvailable Formats Product Documentation105/wlse/213/index.htm Obtaining DocumentationProduct Documentation DVD Cisco.comOrdering Documentation Documentation Feedback Reporting Security Problems in Cisco ProductsCisco Product Security Overview Cisco Technical Support & Documentation Website Obtaining Technical AssistanceDefinitions of Service Request Severity Submitting a Service RequestObtaining Additional Publications and Information Xii General FAQs General FAQs and TroubleshootingFAQs and Troubleshooting General FAQs and Troubleshooting MIB Name Description General Troubleshooting If no, see Symptom Cannot log in as a system administrator., Possible Cause Restart the system services by entering the following Symptom The system time or date is incorrect # ip name-server ip-address Deployment Wizard Troubleshooting Faults FAQs Faults FAQs and TroubleshootingFAQs and Troubleshooting Faults FAQs and Troubleshooting Faults Troubleshooting Recommended Action Not applicable Devices FAQs Devices FAQs and TroubleshootingFAQs and Troubleshooting Devices FAQs and Troubleshooting Discovery/Device Management Troubleshooting Devices TroubleshootingMessage Possible Cause Recommended Action Discovered but could not be FAQs and Troubleshooting Devices FAQs and Troubleshooting Configuration FAQs Configuration FAQs and TroubleshootingOL-8376-01 Page OL-8376-01 Configuration Troubleshooting Auto-Managed Configuration Assign Templates Firmware FAQs Firmware FAQs and TroubleshootingFirmware Troubleshooting Recommended Action FAQs and Troubleshooting Firmware FAQs and Troubleshooting Reports FAQs Reports FAQs and TroubleshootingTelnet Credential Fields Required Reports Troubleshooting Recommended Action None Click jobvm.log Radio Monitoring Radio Manager FAQs and TroubleshootingRadio Manager FAQs ConfigurationMiscellaneous Auto Re-Site SurveyWDS AP? When Wlse is used for initial setup OL-8376-01 Auto Re-Site Survey Select Devices Discover Managed/Unmanaged Radio Manager TroubleshootingAssisted Site survey Wizard Sites FAQs and TroubleshootingSites FAQs Location ManagerRadio Parameter Generation AP Radio ScanAssisted Site Survey Wizard FAQs and Troubleshooting Sites FAQs and Troubleshooting AP Radio Scan Sites Troubleshooting FAQs and Troubleshooting Sites FAQs and Troubleshooting FAQs and Troubleshooting Sites FAQs and Troubleshooting Detecting Rogue APs Intrusion Detection System FAQs and TroubleshootingIntrusion Detection System FAQs APs in Scanning-Only ModeDetecting Rogue APs Page OL-8376-01 Intrusion Detection System Troubleshooting Admin FAQs Admin FAQs and TroubleshootingFAQs and Troubleshooting Admin FAQs and Troubleshooting Redundancy State Description Admin Troubleshooting Recommended Action FAQs and Troubleshooting Admin FAQs and Troubleshooting Select Faults Manage Fault Settings Generating Diagnostics for Technical Assistance Troubleshooting Tools for the Wlse ApplianceInternal AAA Server Wlse Express FAQs Fault Descriptions To rule Access Point /Bridge FaultsUtilization % Engine, Release CiscoWorks Wireless LAN SolutionSsid Version number See IDS Intrusion Detection System Faults,Table-name. OID-name Problem-detailsNewChannel Vlan numberVlan Channel origChannelRadio Interface Faults Broadcast is disabled for Radio-x Radio Interface Faults Rate % Reason, IgnoredFault. See Q.What are the results Verify RM Capability IDS Intrusion Detection System Faults IDS Faults IDS CcmpFramecount,Intervalwind FloodcountOwsize Channel Frames Sntp Enabled That is observed generating ViolationNumber of Ccmp Replay Fault threshold set for Number of Tkip Local Fault threshold set for Cd11IfStationRole from Unregistered Clients One or more unregistered clients Wlse Faults Voice FaultsThreshold% Wlse LAN Solution Engine, 2.13. or in the onlinePEAP/RADIUS AAA Server FaultsEAP-FAST EAP-MD5, Leap EAP-MD5 /LEAPEAP-MD5 EAP-FAST5EAP LeapPeap Radius Degraded utilization % Switch FaultsUtilization % Wlsm Faults Router FaultOL-8376-01 D E IN-2 IN-3 IN-4 HttpNAT Detection, frequencyIN-6 IN-7 SSHIN-8 WDSWlsm IN-10
Top Page Image Contents