Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
742
Views
0
Helpful
1
Replies

acs peap handshake failed

Go to solution
Dmitry Loukovtsev
Level 1
Level 1

‎10-11-2016 07:19 PM - edited ‎03-11-2019 12:08 AM

I have 3 WLC and 2 ACS servers. Students began to complain of problems with the authorization of their devices.

I have noticed that they can login to the AP that are in a certain controller, but can not log in if you will go to the APs that are linked to another controller. (see attachment)

Сontrollers are in the same domain. L2 - WPA/WPA2 - 802.1x, ACS - external AD Windows 2012. Self-signed certificate ACS.

WLC - 8.0.110.0

ACS - 5.8.1.4.5 Patches :  5-8-0-32-3 5-8-0-32-5

What could it be?

Labels:
Preview file
111 KB
Preview file
36 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Gagandeep Singh
Cisco Employee
Cisco Employee

‎10-12-2016 05:38 AM

It seems to be trust issue in terms of certificate exchange during PEAP flow.

As you are using ACS self signed certificate.

Make sure self signed cert has to be present in trusted store on client if validate server certificate option checked under PEAP setting on client.

Regards

Gagan

ps : rate if it helps!!!!

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Gagandeep Singh
Cisco Employee
Cisco Employee

‎10-12-2016 05:38 AM

It seems to be trust issue in terms of certificate exchange during PEAP flow.

As you are using ACS self signed certificate.

Make sure self signed cert has to be present in trusted store on client if validate server certificate option checked under PEAP setting on client.

Regards

Gagan

ps : rate if it helps!!!!

0 Helpful
Customers Also Viewed These Support Documents