This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

EAP-TEAP Authentication w/ 440-G2

EAP-TEAP Authentication w/ 440-G2

MikeTraylor
New Contributor

yesterday

X440-G2-48p-10G4 Firmware: 32.7.3.15-patch1-19

Site Engine Version: 25.08.13.02

Control Version: 25.08.13.02

I have a Windows laptop configured to use EAP-TEAP authentication on wired and wireless and having problems with wired authentication.  

On wired, connecting to the X440-G2 switch I am able to authenticate successfully using EAP-TLS authentication w/ both user and machine certificates.  This indicates to me that there are no certificate authentication issues.

Yet, when I configure the NIC to present TEAP authentication with TLS method 1 and 2 it fails.  Control logs only tell me the client didn't respond to the challenge.

I can confirm the TEAP authentication method on the laptop works just fine with another NAC solution I have in my lab.

I do not believe control to be the issue in this scenario as I am able to do TEAP authentication with an AP controlled by CloudIQ with the same laptop configured the same.

Anyone have any insight to this?

Thanks

0 Kudos
1 REPLY 1

Ryan_Yacobucci
Extreme Employee

an hour ago

Hello,

If you go into the AAA configuration within Control did you set the TEAP Chaining method to use MSCHAP2 or TLS?

When you are doing your testing, are you testing with the device when there is a logged in user, or without a logged in user?

In it's current state, TEAP authentication will never succeed if the end system is in a "Machine Auth" state. If there is no user logged in the user credentials are not presented during authentication and it will fail.  For testing, make sure a user is logged in, and make sure you have set the TEAP chaining mode correctly.

Thanks
-Ryan

0 Kudos
GTM-P2G8KFN