Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
432
Views
0
Helpful
1
Replies

Cisco EAP FAST - without PACs

ainmainmcisco
Level 1
Level 1

‎03-28-2013 01:11 PM - edited ‎07-03-2021 11:48 PM

My group is implementing EAP FAST without PACs.  (We are using PKI)

I am trying to document the details of this setup.

I know that EAP-FAST can be used without PAC files, falling back to normal TLS.

What I cannot find is a good discussion of the EAP FAST process (phases) when there are no PACs used.

There are several sites that talk about the EAP FAST phases in detail, but they all seem to be talking about using PACs.

Can anyone direct me, or illuminate me?

Thanks.

Paul

Labels:
0 Helpful
1 Reply 1

Saurav Lodh
Level 7
Level 7

‎04-22-2013 07:44 PM

When using the controller's local RADIUS server for EAP-FAST authentications, authentication may fail if your client already has a PAC for the controller you are authenticating to.When the client does not have a PAC, EAP-FAST auto provisioning will ask you to accept a PAC from the local RADIUS server, authentication will then pass.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card