I would like to know the answer to this question as well.
Walter Reynolds
Principal Systems Security Development Engineer
Information and Technology Services
University of Michigan
(734) 615-9438
On Fri, Jan 31, 2014 at 2:36 PM, Norman Elton normel...@gmail.com wrote:
, 2014 1:57 PM
*To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
*Subject:* Re: [WIRELESS-LAN] OS X 802.1x auth issue
Interesting. What were the band-steering symptoms? Any way to pin the
problem down to band-steering, or was it trial and error?
Norman
On Fri, Jan 31, 2014 at 1:44 PM, Edward Ip i
Listserv
[mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] *On Behalf Of *Jeffrey
Sessler
*Sent:* Friday, January 31, 2014 1:40 PM
*To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
*Subject:* Re: [WIRELESS-LAN] OS X 802.1x auth issue
We've seen the cert issue, and OS 10.8 and 10.9 don't seem to like
band
AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] OS X 802.1x auth issue
You mentioned load balance mode, were you running band-steering and
spectrum-load-balancing at the same time on the same APs? Check with Aruba,
but I think they will tell you this is not a recommended
|
K2G 1V8 | Canada
algonquincollege.com
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
[mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Jeffrey Sessler
Sent: Friday, January 31, 2014 1:40 PM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] OS X 802.1x
It also appears specific to certs based on 2048 bit keys. Also there is no
cert validation delay upon initial connect... only when attempting to
reauth... ie after a death or a roam event.
Can anyone confirm the bug only affects certs with 2048 bit keys? I
don't see that listed anywhere in
And a follow up. Has anyone actually confirmed that this bug is
actually causing client complaints? We do seem to riding a wave of
complaints from MacBook owners. We are only just now starting to
change cert trust settings. Hopefully we'll know more next week as
students have a chance to test
We've seen the cert issue, and OS 10.8 and 10.9 don't seem to like
band/load-steering. The cert issue coupled with band-steering and/or
load-steering make the Mac's very unhappy.
Jeff
On Friday, January 31, 2014 at 10:05 AM, in message
[mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Jeffrey Sessler
Sent: Friday, January 31, 2014 1:40 PM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] OS X 802.1x auth issue
We've seen the cert issue, and OS 10.8 and 10.9 don't seem to like
band/load-steering. The cert issue
*Sent:* Friday, January 31, 2014 1:40 PM
*To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
*Subject:* Re: [WIRELESS-LAN] OS X 802.1x auth issue
We've seen the cert issue, and OS 10.8 and 10.9 don't seem to like
band/load-steering. The cert issue coupled with band-steering and/or
load-steering make
@LISTSERV.EDUCAUSE.EDU] On Behalf Of Jeffrey Sessler
Sent: Friday, January 31, 2014 1:40 PM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] OS X 802.1x auth issue
We've seen the cert issue, and OS 10.8 and 10.9 don't seem to like
band/load-steering. The cert issue coupled with band
Sorry for the spam today, one last question for those that have experienced
the cert issue. What was the client symptom? That is, what does the user
see during the 10 second delay? Wifi icon is all grey, laddering up and
down, all dark?
Thanks,
Norman Elton
**
Participation and
1:40 PM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] OS X 802.1x auth issue
We've seen the cert issue, and OS 10.8 and 10.9 don't seem to like
band/load-steering. The cert issue coupled with band-steering and/or
load-steering make the Mac's very unhappy.
Jeff
trsch...@ucdavis.edu
Sent: 23/01/2014 20:11
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] OS X 802.1x auth issue
'It also appears specific to certs based on 2048 bit keys. Also
there is no cert validation delay upon initial connect... only when
attempting to reauth
On 29/01/14 00:26, Walter Reynolds wrote:
2) Remove Wi-Fi network and then re-add (use the + and - buttons under
the list in System Preferences/Network)
If after doing those two you are still having problems we have had to
take the nuclear approach. This is less if simply not getting an IP,
@LISTSERV.EDUCAUSE.EDU] On Behalf Of Michael Dickson
Sent: 21 January 2014 17:06
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] OS X 802.1x auth issue
Is anyone working on (or successfully implemented) a scalable,
automated(?) solution to change the SSL to 'Always Trust
mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] OS X 802.1x auth issue
Is anyone working on (or successfully implemented) a scalable,
automated(?) solution to change the SSL to 'Always Trust' for
target certs and distributed this to their client devices en
/2014 14:41
To:
WIRELESS-LAN@LISTSERV.EDUCAUSE.EDUmailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] OS X 802.1x auth issue
+1 to that.
-dan
On 1/23/2014 9:28 AM, Wright, Don wrote:
Anyone have concerns about making the trust setting changes to the certificate
chain? I'm
: The EDUCAUSE Wireless Issues Constituent Group Listserv
[mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Ian McDonald
Sent: Thursday, January 23, 2014 9:52 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] OS X 802.1x auth issue
I certainly do have concerns about this being
@LISTSERV.EDUCAUSE.EDU] *On Behalf Of *Ian McDonald
*Sent:* Thursday, January 23, 2014 9:52 AM
*To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
*Subject:* Re: [WIRELESS-LAN] OS X 802.1x auth issue
I certainly do have concerns about this being the right way to 'fix' the
issue. Sticking plaster on the client behaviour
Of Travis Schick
Sent: Thursday, January 23, 2014 10:10 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] OS X 802.1x auth issue
It doesn't happen for TLS(where clients are authenticated using a cert your
PKI infrastructure has provided) but appears specific for PEAP
‘It also appears specific to certs based on 2048 bit keys. Also there is
no cert validation delay upon initial connect... only when attempting to
reauth... ie after a death or a roam event.”
Correct.
hehe... Not sure Apple can help with the delay after a death event but
perhaps after
/2014 20:11
To:
WIRELESS-LAN@LISTSERV.EDUCAUSE.EDUmailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] OS X 802.1x auth issue
‘It also appears specific to certs based on 2048 bit keys. Also there is no
cert validation delay upon initial connect... only when attempting to reauth
*From:* The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:
WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] *On Behalf Of *Joel Coehoorn
*Sent:* Friday, January 17, 2014 7:58 PM
*To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
*Subject:* Re: [WIRELESS-LAN] OS X 802.1x auth issue
Even acknowledging
Of Joel Coehoorn
Sent: Friday, January 17, 2014 7:58 PM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] OS X 802.1x auth issue
Even acknowledging the issue is a huge help for me: Mac people have a hard
time believing Apple could possibly have done anything wrong
@LISTSERV.EDUCAUSE.EDU] On Behalf Of Michael Dickson
Sent: 21 January 2014 17:06
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] OS X 802.1x auth issue
Is anyone working on (or successfully implemented) a scalable, automated(?)
solution to change the SSL to 'Always Trust' for target
On Jan 17, 2014, at 22:16 , Mike Albano mike.alb...@unlv.edu wrote:
Would be nice if more technical details were available. For example, at what
part of the EAP/PEAP packet exchange does this delay occur?
Sounded like part of the issue was with CRL and/or OCSP.
Also interesting was that
l Coehoorn <jcoeho...@york.edu>
Sent by: The EDUCAUSE Wireless Issues Constituent Group Listserv <wireless-lan@listserv.educause.edu>
Date: 01/17/2014 05:06PMSubject: Re: [WIRELESS-LAN] OS X 802.1x auth issue
Even acknowledging the issue is a huge help for me: Mac people have a hard time
28 matches
Mail list logo