Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
644
Views
0
Helpful
1
Replies

Problem with work group bridge authentication with ACS 5.x

Santosh Shetty
Level 1
Level 1

‎11-05-2012 11:16 PM - edited ‎03-10-2019 07:45 PM

EAP-TLS authentication for workgoup brdige fails.

Folloing is the log on ACS

Authentication failed

12514 EAP-TLS failed  SSL/TLS handshake because of an unknown CA in the client certificates chain

12811 Extracted TLS Certificate message containing client certificate.

12814 Prepared TLS Alert message.

12817 TLS handshake failed.

12514 EAP-TLS failed SSL/TLS handshake because of an unknown CA in the client certificates chain

12507 EAP-TLS authentication failed

12505 Prepared EAP-Request with another EAP-TLS challenge

11006 Returned RADIUS Access-Challenge

11001 Received RADIUS Access-Request

11018 RADIUS is re-using an existing session

12504 Extracted EAP-Response containing EAP-TLS challenge-response

11504 Prepared EAP-Failure

11003 Returned RADIUS Access-Reject

Labels:
0 Helpful
1 Reply 1

Tarik Admani
VIP Alumni
VIP Alumni

‎11-06-2012 06:03 AM

I have seen this issue before, the AP is present an old PAC and doesnt update until after you reboot. You can open a wireless TAC case and they will get you the right image as to when this was fixed. As a workaround you can extend the lifetime of the PAC in your authentication settings for EAP-FAST.

Thanks,

Sent from Cisco Technical Support iPad App

0 Helpful
Customers Also Viewed These Support Documents