Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
421
Views
0
Helpful
1
Replies

Cisco ACS self signed certifiacte

Sonugnair_2
Level 1
Level 1

‎01-07-2007 03:26 AM - edited ‎02-21-2020 10:17 AM

Hi,

I am implementing NAC (framework). :-(

802.1x protocol is used. Bascically the scenario is that a laptop user plugging his device into the nw should get a pop up screen where he supplies username & password, then check if OS/antivirus sw status , if passed allow access else place in quarentine vlan.

I have CTA 2.0.1.14 , ACS 4.1 and catalyst 3750 with proper IOS. When i try to connect it prompts for username and not password. Then it says autehtication failed. The log in ACS is "EAP-TLS or PEAP authentication failed during SSL handshake". I read somewhere that this could be a problem with certificates.In ACS i created a self signed certificate (and installed it) , manually put it in a laptop and then installed it. (for testting). Is this the correct way to do it?.

Is there some straight forward configuration guide for NAC?

Pls help.

Regards

Sonu

Labels:
0 Helpful
1 Reply 1

andrew.burns
Level 7
Level 7

‎01-08-2007 07:33 AM

Hi,

The best place to start is the "Phase One Configuration and Deployment Guide" which can be found here:

http://www.cisco.com/application/pdf/en/us/guest/netsol/ns466/c654/cdccont_0900aecd80217e26.pdf

The 4 design guides are also extremely useful:

http://www.cisco.com/en/US/netsol/ns617/networking_solutions_design_guidances_list.html

Not sure about your exact issue but there are instructions for certificate installs, and also a good troubleshooting section in the phase one guide.

HTH

Andrew.

0 Helpful
Customers Also Viewed These Support Documents