EAP-TLS or PEAP authentication failed during SSL handshake to the ACS serve

axfalk · ‎12-19-2007

We are running the LWAPP (2006 wlc's and 1242 AP's) and using the ACS 4.0 for authentication. Our users are

experiencing an issue, where they are successfully authenticated the first time, however as the number of them is increasing, they're starting to drop the connections and being prompted to re-authenticate. At this point, they are not being able to authenticate again.

We're using PEAP for the authentication and Win XP SP2 clients as the supplicants. The error message that we are seeing on the ACS for that controller is "EAP-TLS or PEAP authentication failed during SSL handshake to the ACS server"...Not sure if this error msg is relevant since we have other WLC's that are working OK and still generating the same error msg on the ACS...

Thanks..

Scott Fella · ‎12-27-2007

Here are some configs you can try:

config advanced eap identity-request-timeout 120

config advanced eap identity-request-retries 20

config advanced eap request-timeout 120

config advanced eap request-retries 20

save config

-Scott
*** Please rate helpful posts ***

axfalk · ‎12-28-2007

Thanks...I have tried these tweakings and, unfortunately, to no avail...Any other suggestions? Thnx again...

Scott Fella · ‎12-28-2007

What logs are you seeing on the ACS and in the WLC2006?

-Scott
*** Please rate helpful posts ***