Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
428
Views
0
Helpful
1
Replies

Facing authentication Failed issue when enabling Download_CRL option

Imran Ahmad
Level 2
Level 2

‎10-03-2013 07:58 AM - edited ‎03-10-2019 08:57 PM

Dear Experts,

My clients are being authenticated using EAP-TLS.   but while i want to enable CRL on my ISE device, as soon as i go to Certificate-Store on the ISE and enable the check-box next to   Download CRL  option and add my CA CRL path (http://ca-server/CertEnroll/TrustedCA.crl) . then all my clients fails with authentication.

Note- I have standalone CA

Any advice ?

Labels:
0 Helpful
1 Reply 1

Muhammad Munir
Level 5
Level 5

‎10-07-2013 09:54 PM

Hi

  • Check to make sure that the CA services are up and running on the CA server.
  • Replace the certificate. For a trust certificate, contact the issuing Certificate Authority (CA). For a CA-signed local certificate, generate a CSR and have the CA create a new certificate. For a self-signed local certificate, use Cisco ISE to extend the expiration date. You can delete the certificate if it is no longer used.
  • Check if the configuration change is expected.
  • Ensure that the download URL is correct and is available for the service.

For more information, please visit the given link:

http://www.cisco.com/en/US/docs/security/ise/1.2/user_guide/ise_mnt.html

0 Helpful
Customers Also Viewed These Support Documents