10-11-2016 07:19 PM - edited 03-11-2019 12:08 AM
I have 3 WLC and 2 ACS servers. Students began to complain of problems with the authorization of their devices.
I have noticed that they can login to the AP that are in a certain controller, but can not log in if you will go to the APs that are linked to another controller. (see attachment)
Сontrollers are in the same domain. L2 - WPA/WPA2 - 802.1x, ACS - external AD Windows 2012. Self-signed certificate ACS.
WLC - 8.0.110.0
ACS - 5.8.1.4.5 Patches : 5-8-0-32-3 5-8-0-32-5
What could it be?
Solved! Go to Solution.
10-12-2016 05:38 AM
It seems to be trust issue in terms of certificate exchange during PEAP flow.
As you are using ACS self signed certificate.
Make sure self signed cert has to be present in trusted store on client if validate server certificate option checked under PEAP setting on client.
Regards
Gagan
ps : rate if it helps!!!!
10-12-2016 05:38 AM
It seems to be trust issue in terms of certificate exchange during PEAP flow.
As you are using ACS self signed certificate.
Make sure self signed cert has to be present in trusted store on client if validate server certificate option checked under PEAP setting on client.
Regards
Gagan
ps : rate if it helps!!!!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide