As mentioned in another post here, I'm trying to set up both machine authentication and user authentication. But I'm puzzled by one of the Failure Reasons ACS gives me:
Failure Reason :
12752 Failed to negotiate EAP for inner method because EAP-TLS not allowed under PEAP configuration in Access Service.
"The client's supplicant sent an EAP-Response/NAK packet rejecting the EAP-based protocol that was previously proposed for the inner method, and requested to use EAP-TLS instead. However, ACS does not allow EAP-TLS under PEAP configuration in the Allowed Protocols section of the corresponding Access Service."
"Ensure that the EAP-TLS protocol is allowed by ACS under PEAP configuration in the Allowed Protocols section of the relevant Access Service."
The problem is; how do I turn on EAP-TLS under Peap? I'm not able to find any place where I can do that. Sure, I can enable PEAP, but there are no EAP-TLS choice under there, just MS-CHAP v2 and GTC.