Issue with WPA2-Enterprise Authentication

So we've been running 9.7 EAP for a couple of weeks (this is on a SG450) and have run across a new issue; using the APX320 (in an earlier thread, discussed a provisioning issue which turned out to be a defective AP which Sophos replaced) Access Point.  Randomly WPA2-Enterprise authentication fails, and it takes a power cycle of the APX to bring that back up and running.  The AP shows as up and SSIDs not using WPA2-Enterprise authentication (plain WPA2 PSK) work fine.  The RADIUS server(s) we are pointing at (Windows DCs) are responding fine to the test button in UTM, etc.  and no changes have been made on those for many months.  Any suggestions?

  • I'll also add sometimes it's just slow authenticating as well... usually an APX reboot resolves it.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

  • Never got a response to this (guess no one was looking) … anyhow, now that we have installed the 9.700 release, the problem continues, actually seems to be worse... If I connect to an old AP15c, works just fine.

     

    For the curious, if there is anyone, case number is 9276864.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

  • Please provide the following logs/info when the issue occurs : 

    • /var/log/wireless.log (From UTM).
    • ssh the AP(APX320) and execute command "logread -f" and try to connect the client and provide the logs of "logread -f"
    • Radius server logs.