Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3846
Views
5
Helpful
7
Replies

WIFI Certificate EAP-TLS Authentication - Windows 8

colinbarnard
Beginner
Beginner

‎03-18-2014 01:34 AM - edited ‎03-10-2019 09:33 PM

We have setup Wireless certificate authentication using ACS 5.3. It uses a stand alone certificate chain and all certificates were installed and correctly setup on the ACS. We have rules setup that look for a specific common name in the User personal certificate(not AD). When  we deploy the certificates to a Windows 7 client and connect to the specified SSID, it connects successfully and the log states that it authenticated using the Common name of the certificate using X509_PKI.

We have problems when the same certificates are deployed to a Windows 8 client, as it then states that the connection failed using EAP-TLS authentication Method. The error says "12519 EAP-TLS failed SSL/TLS handshake because of an unsupported certificate in the client certificate chain", but how can this be when we are setting up the windows 8 client in exactly the same way as the windows 7 client, certificates and wifi profiles match exactly.

Any advice?

Labels:
0 Helpful
7 Replies 7

Amjad Abdullah
VIP Alumni
VIP Alumni

‎03-18-2014 06:38 AM

Hi,

what is your WLC version? what is your AP model?

Are you using default windows 8 wireless supplicant?

Maybe the issue is with the supplicant. please try using cisco anyconnect NAM to connect to wireless and let me know if it shows same issue.

 

 

Rating useful replies is more useful than saying "Thank you"