cancel
Showing results for 
Search instead for 
Did you mean: 

PEAP failed SSL/TLS handshake because the client rejected the radius server certificate

PEAP failed SSL/TLS handshake because the client rejected the radius server certificate

Jan_van_de_Bor
New Contributor II
Extreme ap6532 (wing 5.8) Ge1 interface configured as dot1xsupplicant (client) for wired 802.1x authentication of AccessPoint connected to cisco 2960x switch (15.2(4)E5) configured with cisco ISE 2.3 as radiusserver. During authentication of AP a radius server message "PEAP failed SSL/TLS handshake because the client rejected the radius server certificate.

Configured CA certificate chain (same as on radius server, as trustpoint on AP, but still problem exists.

Somebody experience with Extreme AP Wing 5.x configured as dot1xsupplicant ?

Please help. Thanks.

5 REPLIES 5

Andrew_Webster
New Contributor III
The client MUST trust the CA certificate that issued the Radius server's certificate. Make sure that it is in the client's Trusted root CA list.
GTM-P2G8KFN