Hello Everyone,
Looking for some feedback and hopefully a solution to a problem we are seeing with the new LtAP mini LTE kit-US , the WPA2 AES password is failing , the client will attempt to enter the correct password and the router will client device will report an incorrect password response. Changing the SSID (not the password) temporarily corrects the problem. Is anyone else experiencing this problem and / or have a solution? For us it isn’t a one off , we have dozens of clients reporting this issue. We have tried changing the pre-exchange-key timeout from 5m to 1hr, no luck.,Below is a verbose export of a units wireless settings :
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa-psk,wpa2-psk disable-pmkid=
no eap-methods=“” group-ciphers=aes-ccm group-key-update=1h
interim-update=5m management-protection=disabled
management-protection-key=“” mode=dynamic-keys mschapv2-password=“”
mschapv2-username=“” name=default radius-called-format=mac:ssid
radius-eap-accounting=no radius-mac-accounting=no
radius-mac-authentication=no radius-mac-caching=disabled
radius-mac-format=XX:XX:XX:XX:XX:XX radius-mac-mode=as-username
static-algo-0=none static-algo-1=none static-algo-2=none static-algo-3=
none static-key-0=“” static-key-1=“” static-key-2=“” static-key-3=“”
static-sta-private-algo=none static-sta-private-key=“”
static-transmit-key=key-0 supplicant-identity=XXXXXXXXXX tls-certificate=
none tls-mode=no-certificates unicast-ciphers=aes-ccm wpa-pre-shared-key=
12345678 wpa2-pre-shared-key=12345678
/interface wireless
set [ find default-name=wlan1 ] adaptive-noise-immunity=none allow-sharedkey=
no ampdu-priorities=0 amsdu-limit=8192 amsdu-threshold=8192 antenna-gain=
0 area=“” arp=enabled arp-timeout=auto band=2ghz-b/g/n basic-rates-a/g=
6Mbps basic-rates-b=1Mbps bridge-mode=enabled channel-width=20mhz
compression=no country=canada default-ap-tx-limit=0
default-authentication=yes default-client-tx-limit=0 default-forwarding=
yes disable-running-check=no disabled=no disconnect-timeout=3s distance=
indoors frame-lifetime=0 frequency=auto frequency-mode=regulatory-domain
frequency-offset=0 guard-interval=any hide-ssid=no ht-basic-mcs=
mcs-0,mcs-1,mcs-2,mcs-3,mcs-4,mcs-5,mcs-6,mcs-7 ht-supported-mcs=“mcs-0,mc
s-1,mcs-2,mcs-3,mcs-4,mcs-5,mcs-6,mcs-7,mcs-8,mcs-9,mcs-10,mcs-11,mcs-12,m
cs-13,mcs-14,mcs-15,mcs-16,mcs-17,mcs-18,mcs-19,mcs-20,mcs-21,mcs-22,mcs-2
3” hw-fragmentation-threshold=disabled hw-protection-mode=none
hw-protection-threshold=0 hw-retries=7 interworking-profile=disabled
keepalive-frames=enabled l2mtu=1600 mac-address=B8:69:F4:03:39:DB
max-station-count=2007 mode=ap-bridge mtu=1500 multicast-buffering=
enabled multicast-helper=default name=wlan1 noise-floor-threshold=default
nv2-cell-radius=30 nv2-downlink-ratio=50 nv2-mode=dynamic-downlink
nv2-noise-floor-offset=default nv2-preshared-key=“” nv2-qos=default
nv2-queue-count=2 nv2-security=disabled nv2-sync-secret=“”
on-fail-retry-time=100ms preamble-mode=both radio-name=B869F40339DB
rate-selection=advanced rate-set=default rx-chains=0,1 scan-list=default
secondary-channel=“” security-profile=default ssid=CLIENT123
station-bridge-clone-mac=00:00:00:00:00:00 station-roaming=enabled
supported-rates-a/g=6Mbps,9Mbps,12Mbps,18Mbps,24Mbps,36Mbps,48Mbps,54Mbps
supported-rates-b=1Mbps,2Mbps,5.5Mbps,11Mbps tdma-period-size=2
tx-chains=0,1 tx-power-mode=default update-stats-interval=disabled
vlan-id=1 vlan-mode=no-tag wds-cost-range=50-150 wds-default-bridge=none
wds-default-cost=100 wds-ignore-ssid=no wds-mode=disabled
wireless-protocol=802.11 wmm-support=disabled wps-mode=push-button
/interface wireless manual-tx-power-table
set wlan1 manual-tx-powers=“1Mbps:17,2Mbps:17,5.5Mbps:17,11Mbps:17,6Mbps:17,9M
bps:17,12Mbps:17,18Mbps:17,24Mbps:17,36Mbps:17,48Mbps:17,54Mbps:17,HT20-0:
17,HT20-1:17,HT20-2:17,HT20-3:17,HT20-4:17,HT20-5:17,HT20-6:17,HT20-7:17,H
T40-0:17,HT40-1:17,HT40-2:17,HT40-3:17,HT40-4:17,HT40-5:17,HT40-6:17,HT40-
7:17”
/interface wireless nstreme
set wlan1 disable-csma=no enable-nstreme=no enable-polling=yes framer-limit=
3200 framer-policy=none
A clip from a password failing routers log is noted below :
14:41:53 wireless,info 24:77:03:12:34:56@wlan1: connected, signal strength -62
14:41:58 wireless,info 24:77:03:12:34:56@wlan1: disconnected, unicast key exchange timeout
14:42:02 wireless,info 24:77:03:12:34:56@wlan1: connected, signal strength -63
14:42:07 script,info In progress is NULL
14:42:07 script,info Uplink running
14:42:07 wireless,info 24:77:03:12:34:56@wlan1: disconnected, unicast key exchange timeout
14:42:20 l2tp,ppp,info l2tp-out1: terminating… - session closed
14:42:20 l2tp,ppp,info l2tp-out1: disconnected
Thanks in advance for any assistance and feedback.
SM