02-25-2021 01:44 AM
Hello Guys,
I am using cisco 2802 AP as WLC and using ISE for AAA.
Clients should be authenticate by using EAP-TLS.
I am getting these errors:
5411 Supplicant stopped responding to ISE |
12931 Supplicant stopped responding to ISE after sending it the first EAP-TLS message
can anyone guide...
Thanks in advance
Solved! Go to Solution.
03-09-2021 07:46 PM - edited 03-09-2021 07:48 PM
The endpoint is not trusting the ISE certificate.
You are probably using a self-signed certificate on ISE.
You will need to disable certificate validation on your endpoint supplicant (client) or get a properly signed certificate by your enterprise CA or public CA.
02-25-2021 04:07 AM
02-25-2021 05:47 AM
What supplicant are you using on your clients (NAM or native)? Are they properly configured to support eap-tls onboarding? Can you share more detailed live logs so the community can gather more info and see steps?
03-09-2021 07:46 PM - edited 03-09-2021 07:48 PM
The endpoint is not trusting the ISE certificate.
You are probably using a self-signed certificate on ISE.
You will need to disable certificate validation on your endpoint supplicant (client) or get a properly signed certificate by your enterprise CA or public CA.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: