Cisco wireless lan controller radius authentication failures

new wireless lan controller keeps failing rdius authentication with errors like this

RADIUS server 10.x.x.x:1645 deactivated in global list

RADIUS server 10.x.x.x:1645 failed to respond to request (ID 65) for client 00:0b:6b:87:54:d2 /user ‘unknown’

the problem is 2 fold the cisco wireless lan controller radius configuration defaults to a time out of 2 seconds.

you can find this in security/radius/authentication/and your server

change that to 20 seconds

save your configuration

now ssh into the controller using putty or some other app.

run the following command

config radius aggressive-failover disable’

save your configuration and reboot the controller and you should have no more troubles with the radius authentication.