I created a self signed certificate and signing chain to test EAP-TLS authentication, and it's working great.
I'm curious, though, about the authentication source.
I have to pick something, so if I select Endpoint Repository, the user can authenticate properly (user name on the certificate is not present in Endpoint repository).
However, if I select an AD authentication source, authentication fails. (user name also not present in AD).
This seems like inconsistent behavior. Any reason why Clearpass checks for the user in AD, but not in the Endpoint Repository?
Thanks.