WPA Authentication times out/failed every now and then but after some time succesfull
I experience a for me weird connection lost and reconnect problem.
I've Omada AP contoller (V4.1.5) that's controlling 3 AP's: 2 EAP245 and 1 outdoor eap225.
The use of the Omage AP control program makes sure the definitions of the AP's are identical as they're applied to all AP's.
So SSID's and WPA2 secure string is all the same for all AP's.
As of the installation begin of this year but now as of the juni release more ofter the WiFi is instable.
While connected and working client it suddenly looses its connection and attempts to reconnect.
Reconnect takes some time.
In the logs i see "WPA Authentication times out/failed"
But after a minute or so the client does get connected.
All type clients experience this problems: android, windows, chromebook.
The AP's provide 2,4 and 5 GHz using the same SSID.
I've reset the most setting back to standard.
I did orginally use Fast Roaming and band steering. Did uncheck them for now, that improved it a bit but not enough.
When checked these I noticed the client kept conencted but lost internet connectivity.
On android changing "using mac address to random mac" speeds up the relinking.
What could cause this behaviour and what to change here in the conguration ?
The DHCP is delivered using an Edgemax router. The DHCP logs do not reveal much here. Looks like the AP handshake somewhere fails within the alloted time.
DHCP is very busy, but seems the message does not pass:
17:53:31 Information xxx daemon dhcpd3 DHCPOFFER on x.x.x.101 to MyMACaddr via switch0
17:53:31 Information xxx daemon dhcpd3 DHCPDISCOVER from MyMACaddr via switch0
17:53:29 ... same message over and over again...
17:53:29
17:53:28
17:53:28
17:53:28
17:53:28
17:53:23
17:53:23
17:53:21
17:53:21
17:53:20
17:53:20
17:53:19
17:53:19
17:53:18
17:53:18
17:53:16
17:53:16
17:53:15
17:53:15
The omada logs show less details:
7-8-2020 17:53:44 Information MyOmadacontroller local1 1 2020-08-07T15:53:45.934Z - Omada Controller - - [client:MyMACaddr] is connected to [ap:D8-0D-17-94-07-34] with SSID MySSID on channel 1.
7-8-2020 17:53:44 Information MyOmadacontroller local1 1 2020-08-07T15:53:45.900Z - Omada Controller - - [client:MyMACaddr] is disconnected from SSID MySSID on [ap:1C-3B-F3-A1-62-DE] (10s connected, 1.73KB).
7-8-2020 17:53:41 Information MyOmadacontroller local1 1 2020-08-07T15:53:42.721Z - Omada Controller - - [client:MyMACaddr] is connected to [ap:1C-3B-F3-A1-62-DE] with SSID MySSID on channel 11.
7-8-2020 17:53:41 Information MyOmadacontroller local1 1 2020-08-07T15:53:42.694Z - Omada Controller - - [client:MyMACaddr] is disconnected from SSID MySSID on [ap:D8-0D-17-94-07-34] (7s connected, 2.74KB).
7-8-2020 17:53:14 Information MyOmadacontroller local1 1 2020-08-07T15:53:15.782Z - Omada Controller - - [client:MyMACaddr] is connected to [ap:D8-0D-17-94-07-34] with SSID MySSID on channel 108.
7-8-2020 17:53:14 Information MyOmadacontroller local1 1 2020-08-07T15:53:15.756Z - Omada Controller - - [client:MyMACaddr] is disconnected from SSID MySSIDon on [ap:D8-0D-17-94-07-34] (17s connected, 7.78KB).
I'm reading on the subject "WPA Authentication times out/failed" discussions on changing Beacon interval of DTIM period. Do not feel comfortable with this yet to start experiments.
In the mean time the customers on the site are getting upset on this instable WiFi.
Any thoughts?
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
I was able to find the device that was the main problem. A Kindle hadn't been updated and was trying numerous times. A previous comments that "this is kinda like an internal DDOS" makes sense me -- I think this Kindle was causing more problems than just its own failed logins.
So my network is down from hundreds of failed attempts a handful in the last 24 hours. Much better.
I did change DTIM from 1->3 (as someone suggested). Not sure if this did anything, but I'm leaving it too unless someone tells me "1" is definitely better.
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
I've been having similar issues. My LG washer & dryer, as well as a newer Amazon Kindle Fire tablet have auth errors. For the Kindle Fire, I can turn off & on wifi & recover.
LG apparently have a bug where if it ever fails, they quit trying. Then you have to go through the setup process for them again. ><
WiFi used to just work. Then I went and updated firmware. I don't even remember what version I was running on EAP225 when it was working. Getting ready to deploy OC200, router, smart switches & setup VLANs and updated to latest, but still have issues.
I may resort to putting another brand of AP in the garage for the washer & dryer just to work around this. Which is a shame, as I have good coverage there (less than 5m away from an EAP225).
- Copy Link
- Report Inappropriate Content
@jedigrover Had the same kind of issue with my LG Oven and a few other IoT devices (wall switches, wall outlet, etc...). Sometimes these devices aren't very happy when they are connecting to an SSID that combines both 2.4 and 5ghz bands.
What I've done, is basically create a separated SSID that only uses the 2.4 bands and put all my IoT on it. Since then, I didn't have any more issues. Plus, you can isolate these devices from your other devices by enabling the Guest Network option. I always tend to do that because these IoT devices aren't always up to date and often use weak passwords underneath that you don't even know exist, but they are still there and are a vector of attack if any providers of these devices got breached. Enabling the guest network option, isolate each devices from your main network and also isolated them from each other. That way, you reduce considerably the risk of someone getting into your network through these devices.
Hope this helps :)
- Copy Link
- Report Inappropriate Content
Unfortunately, that was the first thing I tried. I noted that the problems started after I changed the wifi config from WPA2-Auto (TKIP or AES) to just WPA2-AES (since TKIP is not so secure). I forgot that I had updated the firmware on the APs about the same time. Before that, things had been stable with the LG's for a couple of months, though they were very fussy to get online in the first place. So I created a 2.4GHz only IOT SSID and set it back to WPA2-auto. It worked for about a week, and then the LG's fell off again. I've had LG out under warranty service and they have lots of customers with these issues. There are definitely bugs with the LG wifi module & firmware, but something in an update of the EAPs seemed to exacerbate the issue. It seems like the LG's might be kind of slow on the authentication and the EAPs time them out so fast that they miss. Then the LG decides it can't connect and stops even trying. It's very frustrating.
- Copy Link
- Report Inappropriate Content
@jedigrover Might be something with the wireless controllers they are using... I know on my end, I had these kinds of issues when I was using 2 EAP245HDv3. I upgraded my 2 AP to EAP620HD a few months ago and didn't have a single issue since. Note that I didn't upgrade because of this particular issue, I just upgraded because I was getting more and more WIFI6 compatible devices in the house, so why not. Also a matter of being future-proof for a few years. But anyway...
You might want to see a few pages back in this thread, I posted a few months ago a few configuration changes that was helping a lot in my case to alleviate this issue.
- Copy Link
- Report Inappropriate Content
Try disabling the GIK rekeying, i've started to see some devices with similar problem after I've enabled this setting.
- Copy Link
- Report Inappropriate Content
I have the same issue. Latest firmware and OC on EAP245 V3. Trying to reset, reboot and stuff like that. DTIM 3 didn't helped. Nothing helped. In office I have 2 AP's and 40-50 clients. Signal strenght is strong and stable. All my log with "WPA Authentication times out/failed" on random devices - Apple, Xiaomi, Samsung... Any solution?
- Copy Link
- Report Inappropriate Content
I have similar issues. Have just installed a couple of EAP615 wall plates and a OC200. Figured this would be an upgrade from my Orbi - not yet. What is dropping out? Google Home Max (this is annoying when listening to music), Google Home/Nest Mini's. TP-link Kasa HS100 power points, TP-link LB130 & KL130B light bulbs, Harmony Hub all on an exclusive 2.4Ghz network. You know what fails the most.... the TP-link bulbs and power points - a lot with a signal strength of 100% (~30dBm)!!
- Copy Link
- Report Inappropriate Content
LucianoR wrote
I'm facing similar issues with my two EAP 225. I've fast roaming and band steering turned on.
One of the things I find interesting is that they show you these errors in a summary in the home page, but there is no drill down: I want to learn when this happened, on which device, connecting to which AP, etc... but can't.. I've enabled additional alerts at the log section, to see if that helps a bit.
@LucianoR Hi, press "Logs" then filter on events, and you can see the devices that are having the problem
- Copy Link
- Report Inappropriate Content
Information
Helpful: 1
Views: 44770
Replies: 57
Voters 0
No one has voted for it yet.