This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Monitoring authentication events

Monitoring authentication events

Go to solution
HHRINetwork
New Contributor II

‎03-02-2021 07:15 PM

AP650s, using ExtremeCloud IQ.  I have MAC authentication on one SSID, using one of the AP650s as RADIUS.  One iPhone user is having trouble connecting, even though I’ve entered her MAC address in the user base and she says she’s entering the password correctly (there’s a pre-shared key so that the SSID isn’t open, and then MAC authentication takes over).

So, it should work, but isn’t, and I want to look at authentication logs to see if I can find errors relating to that MAC address - something like “xx:xx:xx:xx:xx:xx tried to authenticate and failed.”  But, I don’t see anything like that in the logs that I can see (at Manage/Events and Manage/Tools).  Am I looking in the wrong place?

0 Kudos
1 ACCEPTED SOLUTION

Go to solution
HHRINetwork
New Contributor II

‎03-02-2021 08:55 PM

Figured it out!  It’s Apple #&$^&%^ Private MAC address.  See https://support.apple.com/en-us/HT211227 for details.  By default, the iPhone sends a fake MAC to each AP it connects to, so doing MAC authentication by the real one won’t work.  You can turn it off per SSID.  Once we did that, she connected.

View solution in original post

0 Kudos
6 REPLIES 6

Go to solution
HHRINetwork
New Contributor II

‎03-02-2021 08:55 PM

Figured it out!  It’s Apple #&$^&%^ Private MAC address.  See https://support.apple.com/en-us/HT211227 for details.  By default, the iPhone sends a fake MAC to each AP it connects to, so doing MAC authentication by the real one won’t work.  You can turn it off per SSID.  Once we did that, she connected.

0 Kudos

Go to solution
HHRINetwork
New Contributor II

‎03-02-2021 08:24 PM

Only one AP on her floor, no other devices handy, but I had her connect to the guest network and found that her iPhone reported a different MAC address. 

Of course, once I put that into the user base, it still failed.  Kind of stuck now, but when I’m in the office later this week I’ll try again.

0 Kudos

Go to solution
SamPirok
Community Manager Community Manager
Community Manager

‎03-02-2021 07:50 PM

That’s what it sounds like to me too. Are there any near by APs she could be roaming to that we could try to see with a client monitor? Also, does she have any other devices she can try to connect with to see if it’s an issue isolated to one device or not?

0 Kudos

Go to solution
HHRINetwork
New Contributor II

‎03-02-2021 07:48 PM

Thanks for the quick replies.  So, I set up a client monitor for her MAC address on the one AP that she would connect to.  Told her to connect, she tried and it failed - but the monitor picked up nothing at all. 

I’m working from home, so not looking over her shoulder, so I can’t guarantee she’s doing what she says she is.  But she’s generally a smart user.   But that sure sounds like she’s not even trying to connect to the right AP, right?

0 Kudos
GTM-P2G8KFN