Error:EAP-TLS or PEAP authentication failed during SSL handshake

Answered Question
Feb 27th, 2007

hi guys

am using cisco ACS SE to authenticate users on my wireless lan from the microsoft AD,my clients are using XP and so am using PEAP as my authentication protocol.

when i try to log on to the network from my laptop i get the following error from the ACS SE log.how do i solve this problem and what is causing it?.

EAP-TLS or PEAP authentication failed during SSL handshake

I have this problem too.
0 votes
Correct Answer by Vivek Santuka about 9 years 7 months ago

Hi,

Please uncheck "Validate Server Certificate" on the client's peap settings

Or

Install the root certificate of the CA which signed ACS's certificate on the client.

Regards,

Vivek

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Vivek Santuka Tue, 02/27/2007 - 07:23

Hi,

Please uncheck "Validate Server Certificate" on the client's peap settings

Or

Install the root certificate of the CA which signed ACS's certificate on the client.

Regards,

Vivek

akobwaycct Tue, 02/27/2007 - 22:40

Thanks man i am able to authenticate and connect to my wireless network when i use an account that is in my AD,but the ACS and the WLC are still reporting failed authention in the the failed attempts logs while the passed authentication log is empty...what is causing this?

akobwaycct Wed, 02/28/2007 - 07:05

i managed to get the logs from the ACS passed authentications..the log wwas not enabled

guy.smith Mon, 03/12/2007 - 05:23

We had a similar problem (in schools where any number of users might use a laptop so the user credentials were never cached).

We got round the problem by making sure that the EAP-TLS machine authentication box was ticked in the ACS External Database (Windows) config

Actions

This Discussion

 

 

Trending Topics - Security & Network