Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Error:EAP-TLS or PEAP authentication failed during SSL handshake

hi guys

am using cisco ACS SE to authenticate users on my wireless lan from the microsoft AD,my clients are using XP and so am using PEAP as my authentication protocol.

when i try to log on to the network from my laptop i get the following error from the ACS SE log.how do i solve this problem and what is causing it?.

EAP-TLS or PEAP authentication failed during SSL handshake

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: Error:EAP-TLS or PEAP authentication failed during SSL hands

Hi,

Please uncheck "Validate Server Certificate" on the client's peap settings

Or

Install the root certificate of the CA which signed ACS's certificate on the client.

Regards,

Vivek

5 REPLIES
Cisco Employee

Re: Error:EAP-TLS or PEAP authentication failed during SSL hands

Hi,

Please uncheck "Validate Server Certificate" on the client's peap settings

Or

Install the root certificate of the CA which signed ACS's certificate on the client.

Regards,

Vivek

New Member

Re: Error:EAP-TLS or PEAP authentication failed during SSL hands

Thanks man i am able to authenticate and connect to my wireless network when i use an account that is in my AD,but the ACS and the WLC are still reporting failed authention in the the failed attempts logs while the passed authentication log is empty...what is causing this?

Cisco Employee

Re: Error:EAP-TLS or PEAP authentication failed during SSL hands

Hi,

Can you please tell us what is the authen failure code ?

Regards,

Vivek

New Member

Re: Error:EAP-TLS or PEAP authentication failed during SSL hands

i managed to get the logs from the ACS passed authentications..the log wwas not enabled

New Member

Re: Error:EAP-TLS or PEAP authentication failed during SSL hands

We had a similar problem (in schools where any number of users might use a laptop so the user credentials were never cached).

We got round the problem by making sure that the EAP-TLS machine authentication box was ticked in the ACS External Database (Windows) config

810
Views
0
Helpful
5
Replies
CreatePlease to create content