Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
New Member


Hi All

I am trying to get EAP-TLS working on ACS version 4.2 to Microsoft AD

It works fine in a lab environment but not in the live test environment.

I have several questions:

1. Does anyone have a step by step guide to setting up the ACS elements for EAP-TLS to work with AD?

My certificates are all OK and the remote agent has been installed successfully on a member server.

ACS has been configured with the remote agent.

2. Will the remote agent work on an XP workstation that is a trusted member of the domain?

3. I get 2 different authentication failure codes on the ACS. These are:

     a. Authentication session timed out: Challenge not provided by client.

     b. External DB is not operational.

Does anyone know what these failures mean and the way to resolve them? The second failure is probably the most relevant.

Any help or pointers will be much appreciated.

Thanks all.

CreatePlease to create content