ā05-15-2019 07:50 AM - edited ā02-21-2020 11:05 AM
When the endpoint configured for EAP-TLS machine authentication using machine certificate connects to network. Posture becomes compliant but the posture is happening repetitively. It always shows the following dialog box. Tried reinstalling the AC on the endpoint. The same is successful for wireless but failing for wired. Please help.
Solved! Go to Solution.
ā05-15-2019 09:13 AM
ā05-15-2019 07:55 AM
ā05-15-2019 07:57 AM
Hi Mike
Thanks for the reply, The Certificate chain is there on the host and the trusted store in ISE. But the issue still persists.
Thanks,
Aravind.
ā05-15-2019 08:27 AM
After multiple attempts it says posture failed due to server issues
ā05-15-2019 08:37 AM
ā05-15-2019 08:56 AM
ā05-15-2019 09:13 AM
ā05-17-2019 07:35 PM
Mike.Cifelli is correct on this. Note that an ISE node may use different server certificates for admin and for portals. If you are not using FQDN with the port number configure for the client provisioning portal in the Call Home List (available in ISE 2.2+), the posture might use the cert for "admin".
If you need further help to troubleshoot this, please engage Cisco TAC.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide