HiveOS 6.4r1g.2138 - 121
HiveOS 6.5r4 Honolulu.128121 -330
HiveOS 7.0r2 Bay.131568 -250
HiveOS 6.5r4 Honolulu.128121 -230.
However, we continue to have massive authentication / deauth issues. We have the same setup that has been working well for a long time with a primary and secondary RADIUS proxy set up on two Aerohive APs and NPS acting as the auth server. Auth will work for a number of hours and then clients get deauth'ed (50%+) or cannot connect.
Testing the connection between the Radius proxy in Aerohive and the NPS server returns messages such as:
"There is no configuration on the device for the specified RADIUS server".
"The RADIUS server rejected the Access Request message. Check the shared secret in configuration."
"The connection has timed out"
Then maybe 20 or 30 minutes later, everything is OK again, for a bit.
We don't have any more clients than we did a few weeks ago (a good mix of Apple, PC and Chromebooks), and there is nothing on the NPS server to indicate this is a resource issue. As a matter of fact, I get the aforementioned errors, even when I am the only one on campus.
I have done the PHY level troubleshooting(cable, switch port).
I have tried a number of things with support including adding a newer AP to act as the RADIUS proxy.
The NPS logs don't reveal anything helpful.
I am currently mirroring the primary Aerohive RADIUS proxy AP switch port and capturing in Wireshark.
I would love to have suggestions on where to go from here.
edit: sample from client monitor
01/12/2017 02:06:33 PM 2CBE08F17496 9C5D12DB1364 US-Computer-Lab
DETAIL (131)Send message to RADIUS Server(1x.1x.x.x): code=1 (Access-Request) identifier=27 length=146, User-Name=xxxxxxxxxx NAS-IP-Address=1x.1x.x.x Called-Station-Id=9C-5D-12-DB-13-64:CFS Calling-Station-Id=2C-BE-08-F1-74-96
This will repeat over and over and then out of nowhere the client will complete the auth process.