Header Only - DO NOT REMOVE - Extreme Networks
Question

AD authentication V2110 8021x failed

  • 24 May 2019
  • 2 replies
  • 460 views

Userlevel 4
I've create a rule in EAC so that AD laptops can authenticate to wireless and can connect to the infrastructure.

The conditins of the rule are:
Authentication method is 802.1x (PEAP)

The end system group is defined as:
objectCategory CN=Computer,CN=Schema,CN=Configuration,DC=comp,DC=local

And the location group is the SSID.

The authentication fauls and the error is a CLient Certificate Error.



What is wrong in the config ?

2 replies

Userlevel 6
Hello,

The EAC appliance is deployed with a self signed RADIUS certificate that's not trusted by clients.

The supplicant on the Windows Client needs to not validate the certificate or a certificate signed by a trusted authority needs to be installed.

https://gtacknowledge.extremenetworks.com/articles/Solution/802-1x-User-PEAP-User-Rejected-in-NAC


Thanks
-Ryan
Userlevel 4
Thanks, I will look into it

Reply