WiFi Authentication Error

[kenco81]

OK, here's the problem. I hope someone here can help.

I have a Dell Axim X30 with built-in WiFi. At work I have a Linksys WRT54G running WPA with TKIP. Using the Odyssey client I created a profile on the Axim. The settings are exactly like they are on my laptop. The Axim sees the access points, and connects to it, but it will not authenticate me. I get an error that says "The client and server could not agree on an authentication method" When I called Dell support the tech told me the Axim WiFi will not work with any encrypted networks and that I need to have all my security settings turned off on the router. That guy was obviously not worth the $6/hr he gets paid. I cannot see how they would make a product that will not connect to an encrypted network, especially when they advertise it as being compatible. I can see that some people on the forum are connecting, and I wanted to see if anyone knew what I was doing wrong.

Here are my settings in detail for the Odyssey client:

Network Name: xxxxx

Type: Infrastructure

Association Mode: WPA

Encryption: TKIP

Authenticate Using 802.1X (checked)

Keys will be generated automatically (checked)

Username: xxxx

Permit login using password (checked)

NO CERTIFICATES

EAP/PEAP

EAP/MS-CHAP-V2

This is exactly how they are set on my laptops, and they all connect with no problems. Any ideas would be greatly appreciated. Thanks

I used Dell WLAN Utility for my Axim to talk with my Linksys router with WEP encryption without a problem.

I just specified my SSID along with the passkey (1st one) into my Axim X30, and then I'm able to sync and browse online.

I did not use Odyssey Client at all.

Originally Posted by mr_ding

I used Dell WLAN Utility for my Axim to talk with my Linksys router with WEP encryption without a problem. I just specified my SSID along with the passkey (1st one) into my Axim X30, and then I'm able to sync and browse online. I did not use Odyssey Client at all.

Agree, why don't you delete your current wireless profile the the PPC, then reconnect using the WLAN Utility and select internet. When prompt for you SSID input it the first time and you should be set. I have the same security settings on my Linksys and they work..

[kenco81]

The Dell Client does not give me all the same options that the Odyssey client gives me for TKIP. For example, I cannot tell the Dell client to log me in with my username and password as I can with the Odyssey client. There is no option for using EAP/PEAP or EAP/MSCHAP-V2. These are all necessary settings that I need to get this to work.(That is how I have all my WIndows XP laptops configured because my router is connected to a RADIUS server) I tried using the Dell Client without those settings, and it doesn't work anyway. Thanks for the quick responses

[burdulis]

The basic thread of any of these wireless posts is that DEll did not know what the F they were doing so they included a billion ways to connect. sorry to say youll have to try them all because as you will quickly find out here ther is no set up that works every time (ebven on the same network)

Could Dell have made it more difficult

[Roudou]

Originally Posted by kenco81

OK, here's the problem. I hope someone here can help. I have a Dell Axim X30 with built-in WiFi. At work I have a Linksys WRT54G running WPA with TKIP. Using the Odyssey client I created a profile on the Axim. The settings are exactly like they are on my laptop. The Axim sees the access points, and connects to it, but it will not authenticate me. I get an error that says "The client and server could not agree on an authentication method" When I called Dell support the tech told me the Axim WiFi will not work with any encrypted networks and that I need to have all my security settings turned off on the router. That guy was obviously not worth the $6/hr he gets paid. I cannot see how they would make a product that will not connect to an encrypted network, especially when they advertise it as being compatible. I can see that some people on the forum are connecting, and I wanted to see if anyone knew what I was doing wrong. Here are my settings in detail for the Odyssey client: Network Name: xxxxx Type: Infrastructure Association Mode: WPA Encryption: TKIP Authenticate Using 802.1X (checked) Keys will be generated automatically (checked) Username: xxxx Permit login using password (checked) NO CERTIFICATES EAP/PEAP EAP/MS-CHAP-V2 This is exactly how they are set on my laptops, and they all connect with no problems. Any ideas would be greatly appreciated. Thanks

I got it to work using 802.1x authentication + WEP encryption with EAP_MS-CHAPv2. Replacing WEP by WPA-TKIP like in your case should work as well. If you did not install any Root certificate on the X30, make sure you do not select the option "verify server certificate" and "login using my client certificate".
Just by curiosity, did you install certificates on your laptop ?

I got this 802.1x authentication (which is used in the same way by WEP and WPA-TKIP) to work by using :
- no certificates installed on the X30 and the certificates option turned off (see above).
- an installed Root CA certificate (click on certificate issued by CA in file explorer and installation goes smooth and automatically) and the option "verify server certificate" turned on.

So the bottom line is that it is possible. I will give it a try tomorrow with WPA-TKIP and let you know how it goes.

[Roudou]

OK I just finished tsting and WPA-TKIP + 802.1x works just fine in both scenario :):
1) no certificates installed on the X30 + "permit login using my certificates" OFF + "validate server cretificates" OFF
2) an installed Root CA certificate (click on certificate issued by CA in file explorer and installation goes smooth and automatically) + "permit login using my certificates" OFF + "validate server cretificates" ON :exc:

When in scenario 2) I removed my CA root certificate, it fails to authenticate and I get the following error message in "Odyssey client/Detailes status/authentication" : authentication reason "client issued alert 40 (handshake failure)

It would be interesting to see what you get in this detailed status. Try scenario 1) first. Authentication is solely based on the username and password you entered on the client (no certificate story here).

That'all I could do for now. Hope it heps.

[kenco81]

Originally Posted by Roudou

OK I just finished tsting and WPA-TKIP + 802.1x works just fine in both scenario :): 1) no certificates installed on the X30 + "permit login using my certificates" OFF + "validate server cretificates" OFF 2) an installed Root CA certificate (click on certificate issued by CA in file explorer and installation goes smooth and automatically) + "permit login using my certificates" OFF + "validate server cretificates" ON :exc: When in scenario 2) I removed my CA root certificate, it fails to authenticate and I get the following error message in "Odyssey client/Detailes status/authentication" : authentication reason "client issued alert 40 (handshake failure) It would be interesting to see what you get in this detailed status. Try scenario 1) first. Authentication is solely based on the username and password you entered on the client (no certificate story here). That'all I could do for now. Hope it heps.

First off, I would just like to thank you for the help. :)

Scenario 1 was exactly what I was doing before. I am not using any certificates, just the username/password for authentication. I made sure none of the checkboxes pertaining to certificates were checked off when I ran the config. I still got the error that says "Client and server could not agree on an authentication method"

I tried scenario #2 even though I am not using any certificates just to see what error I would get. In that case the error that came up was "Client issued alert 42 (Bad certificate)" This error seems tomake sense considering I do not have a certificate.

I am beginning to think there is a problem on the router end because it seems that you can get the WPA/TKIP to work with no problems. I tried to do this in the Dell WLAN utility rather than using Odyssey but I do not have the same options (such as the ability to use the username/password combo)

I do have one question for you. What EAP method did you use? I am using EAP/PEAP because that is what I use on my laptop. I tried a few other methods but they didnt seem to work either. Ill keep trying.

[Ranil]

I use WPA-TKIP to connect to my Netgear WG602 AP and everything works pretty smoothly. Onething I can think of is under connections - network management - I chose My ISP in both fields. Field one is "Programs that automatically connect to the Internet should connect using:" Field two is "Programs that automatically connect to a private network should connect using:" I have My ISP on both of these fields.

[Roudou]

Hmm ...
I am using just like you EAP-PEAP with MS-CHAPv2.
The error message "Client and server could not agree on an authentication method" is weird ... It is like the client wants to talk PEAP-MSCHAPv2 and the server says "no way, I talk LEAP !".
The WPA-TKIP part is not the culprit because that is the encryption mechanism. So what makes it fail is the 802.1x-PEAP-MSCHAPv 2 part. This is the protocol used for the authentication ... and provides at the end of the authentication a dynamic WPA key for the encryption (you do not get that far anyway).

I do not know if you can goof around with your router but see if if there are any log files available on it giving more infos.

I am afraid that is all I have for you.
May the force be with you.