Cisco Support Community
Community Member

Cisco ISE SSL/TLS Authentication Failures

Domain Computer authentication (SSL/TLS not checked in computers) is being used in a network. Microsoft Windows 7 is the operating system of clients. In Cisco ISE SSL/TLS failure messages are noticed:

"PEAP failed SSL/TLS handshake because the client rejected the ISE local-certificate" Funny thing is no SSL/TLS is active in the network. How is this possible?

Everyone's tags (1)
Cisco Employee
Community Member

Actually I've already checked

Actually I've already checked this post. However, the client computer is not configured to validate server certificate.

Cisco Employee

Can you post screenshots of

Can you post screenshots of the supplicant's configuration?

Community Member

I have intermittently had

I have intermittently had this issue with ISE in most builds for the better part of a year or so. SOme days everyting is fine other days this occurs for hosts even when validate is not ticked. Tell me about the server certificate on the ISE policy node - is it a wildcard certificate?

what kind of Certificate ISE

what kind of Certificate ISE is using? self signed or 3rd party? I will suggest you to generate the ISE's Local certificate again.

CreatePlease to create content