ISE Windows client does not complete Provisioning. I am trying to use SCEP and NDES
I'm setting a lab environment with ISE 126.96.36.1999 patch 7 (Virtual), Windows server 2008 R2 (Virtual). I had follow instructions to make BYOD and get EAP-TLS certificates.
The first unsolved sittuation I have is with Windows Server. I can't figure out why the "Certificate Web Enrollment Service" and "Certificate Policy Web Enrollment Service" are not available when I enable Active Directory Certificate Service.
Anyway I set up all the rest of configuration on ISE. When I try a test the Guest Portal is displayed, the device is registered, and the Network Setup Assistant is started, but around 3/4 of the process it is aborted with an Error, but nothing explaining wath happened. The "More Information" link does not show anything.
Searching on the Windows Server I found this messages:
The Network Device Enrollment Service received an http message without the "Operation" tag, or with an invalid "Operation" tag
Network Device enrollment service cannot convert encoded portions of the client's http message, or the converter message is larger than 64k. invalid pointer
I suppose the problems should be on the WS but I don't have idea how to fix them.
I will appreciate your assistance. Thanks in advance
Thank you ... I had read the document you indicate and review LabMinutes videos. Labminutes was the first source where I saw the "certificate enrollment web service" and "certificate enrollment policy web service".
After that I had review several sources (videos and books) and I can't find something that indicates why the indicated services are available some times and not in others.
Cisco documentation does not mention these services, but I understand they are required to allow funcionality with non domain devices ...
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...