Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
255
Views
0
Helpful
1
Replies

PEAP MSCHAPv2 failed

c.ong
Level 1
Level 1

‎02-15-2006 07:22 PM - edited ‎07-04-2021 11:38 AM

Hi Sir,

I tried to implement PEAP on wireless LAN. Have configured the ACS 3.3 to slef generate Digital Cert prior to enable PEAP MSCHAPv2 on the ACS Global Authentication menu. However I failed to get the user authenticated. Output of the debug dot11radio on the AP is as follows:

May I know what I might have done wrong or missed out?

Thank you.

Delon

Labels:
Preview file
22 KB
0 Helpful
1 Reply 1

Aaron Harrison
VIP Alumni
VIP Alumni

‎02-16-2006 11:09 AM

Hi

Are you using both machine and user authentication?

As you're using self generated certificates, the client doesn't trust the cert by default.

For computer authentication (done at startup if you are using built-in Windows wireless config utilities) you need to have the cert from the ACS in the 'Local Computer Store'.

For user auth, you need it in the user's own certificate store.

Regards

Aaron

Aaron Please remember to rate helpful posts to identify useful responses, and mark 'Answered' if appropriate!
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card