802.1x PEAP Machine Authentication with MS Active Directory

Unanswered Question
Jun 4th, 2008
User Badges:

802.1x PEAP Machine and User Authentication with MS Active Directory:

I have a simple pilot-text environment, with

- Microsoft XP Client,

- Cisco 2960 Switch,

- ACS Solution Engine (4.1.4)

- MS Active Directory on Win 2003 Server

The Remote Agent (at 4.1.4) is on the same server as the MS AD.

User Authentication works correctly, but Machine Authentication fails.

Failed machine authenticaton is reported in the "Failed Attempts" log of the ACS SE.

The Remote Agent shows an error:

See Attachment.

Without Port-Security the XP workstation is able to log on to the domain.

Many thanks for any indication.


Stephan Imhof

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
jafrazie Thu, 06/05/2008 - 06:54
User Badges:
  • Cisco Employee,

Is host/TestClientMan.Test.local the name of the machine? What does the AAA tell for you the reason it fails?


This Discussion