02-22-2011 06:15 PM - edited 03-10-2019 05:51 PM
02-22-2011 08:09 PM
11001 Received RADIUS Access-Request |
11017 RADIUS created a new session |
Evaluating Service Selection Policy |
15004 Matched rule |
15012 Selected Access Service - WLC |
11507 Extracted EAP-Response/Identity |
12500 Prepared EAP-Request proposing EAP-TLS with challenge |
11006 Returned RADIUS Access-Challenge |
11001 Received RADIUS Access-Request |
11018 RADIUS is re-using an existing session |
12502 Extracted EAP-Response containing EAP-TLS challenge-response and accepting EAP-TLS as negotiated |
12800 Extracted first TLS record; TLS handshake started. |
12805 Extracted TLS ClientHello message. |
12806 Prepared TLS ServerHello message. |
12807 Prepared TLS Certificate message. |
12809 Prepared TLS CertificateRequest message. |
12505 Prepared EAP-Request with another EAP-TLS challenge |
11006 Returned RADIUS Access-Challenge |
11001 Received RADIUS Access-Request |
11018 RADIUS is re-using an existing session |
12504 Extracted EAP-Response containing EAP-TLS challenge-response |
11514 Unexpectedly received empty TLS message; treating as a rejection by the client |
12512 Treat the unexpected TLS acknowledge message as a rejection from the client |
11504 Prepared EAP-Failure |
11003 Returned RADIUS Access-Reject |
02-22-2011 09:53 PM
I also have this issue. I have done Debugs on Wireless Controllers for dot1x and not seeing anything except a deny after three attempts.
Is the Local ACS Certificate supposed to be the Certificate created by the CA or is it dynamically generated?
Thanks
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide