I want to authenticate dial-up users with ACS internal DB using certificates which are stored on smart cards using EAP-TLS method.
I use Microsoft Standalone CA to enroll certificates and configure ACS.
But I cannot authenticate clients. ACS Logs says that SSL handshake has failed and I dont know what to do to solve this problem.
We have been able to do the above scenario when CA is enterprise and we have a domain controller which ACS PC and Client are members of it but when we remove Active Directory from the network and reconfigure ACS and certificate authority client authenticateion fails.
EAP-TLS uses mutual authentication in which both the ACS (authentication, authorization, and accounting [AAA]) server and clients have certificates and prove their identities to each other. Check if the ACS is properly configured to obtain certificates from storage. Following link may help you
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...