Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1538
Views
0
Helpful
2
Replies

ISE certificate issue with android

maxaxim111
Level 1
Level 1

‎01-20-2015 05:25 AM - edited ‎03-10-2019 10:21 PM

802.1x with workstations is working without issues however Android devices are flagging the following error in the logs: "EAP-TLS failed SSL/TLS handshake because the client rejected the ISE local-certificate"

We have tried removing the old certificate, restarted the PSN and ISE servers and forced a resync as well. Apple and Windows devices are showing the certificates are fine and NOT flagging the same error, they operate 100% of the time.

2 people had this problem
Labels:
0 Helpful
2 Replies 2

nspasov
Cisco Employee
Cisco Employee

‎01-20-2015 11:31 AM

A couple of questions:

1. You are performing EAP-TLS authentication? If yes, can you explain how you get the CSR and then the signed certificate on the Android device?

2. Do you have the Root CA's certificate (The CA that signed the ISE certificate) in the Android trusted certificate store?

 

Thank you for rating helpful posts!

Thank you for rating helpful posts!
0 Helpful

jan.nielsen
Level 7
Level 7

‎01-21-2015 11:00 AM

Also, be sure to remember to import the whole ca-chain for the ise cert on ise.

0 Helpful
Customers Also Viewed These Support Documents