Solved: Re: Error:EAP-TLS or PEAP authentication failed during SSL hands

akobwaycct · ‎02-27-2007

hi guys

am using cisco ACS SE to authenticate users on my wireless lan from the microsoft AD,my clients are using XP and so am using PEAP as my authentication protocol.

when i try to log on to the network from my laptop i get the following error from the ACS SE log.how do i solve this problem and what is causing it?.

EAP-TLS or PEAP authentication failed during SSL handshake

Vivek Santuka · ‎02-27-2007

Hi,

Please uncheck "Validate Server Certificate" on the client's peap settings

Or

Install the root certificate of the CA which signed ACS's certificate on the client.

Regards,

Vivek

View solution in original post

Vivek Santuka · ‎02-27-2007

Hi,

Please uncheck "Validate Server Certificate" on the client's peap settings

Or

Install the root certificate of the CA which signed ACS's certificate on the client.

Regards,

Vivek

akobwaycct · ‎02-27-2007

Thanks man i am able to authenticate and connect to my wireless network when i use an account that is in my AD,but the ACS and the WLC are still reporting failed authention in the the failed attempts logs while the passed authentication log is empty...what is causing this?

Vivek Santuka · ‎02-28-2007

Hi,

Can you please tell us what is the authen failure code ?

Regards,

Vivek

akobwaycct · ‎02-28-2007

i managed to get the logs from the ACS passed authentications..the log wwas not enabled

guy.smith · ‎03-12-2007

We had a similar problem (in schools where any number of users might use a laptop so the user credentials were never cached).

We got round the problem by making sure that the EAP-TLS machine authentication box was ticked in the ACS External Database (Windows) config

Error:EAP-TLS or PEAP authentication failed during SSL handshake