I am trying to do Leap and Eap-TLS together. How can I write a policy in ACS that would check for identity before choosing the right profile for the request. ACS 5.2 does not support Native eap-tls. I am assuming I will be using Idenity username for Leap and Predefinied Certificate profile identity for eap-tls.
I was able to follow the documentation and use identity sequence option on the ACS and accomish the task.
I have one question, when I look at the ACS logs when EAP-TLS fails it says in the logs EAP-TLS under Authentication method but when it passes it says X509_PKI under authentication method, is it normal?