10-27-2015 08:41 AM
1) I am using Canon C2230 printer with 802.1x enabled. (This printer cannot do CSR and export cert)
2) I uploaded the Root CA into the printer (Onbard as Root CA)
3) I created and uploaded a client cert via onboard (CSR) with the username same as the printer
4) I am very sure that switchport configuration is correct because if works for other devices
Any idea why am I getting the following error message? Am I doing the right way?
EAP-TLS: fatal alert by server - internal_error
eap-tls: Error in establishing TLS session
10-27-2015 09:43 AM
Did you give the printer the private key password?
Printers tend to have really crappy supplicants which is why most people don't do dot1X with them.
10-27-2015 10:07 AM
10-27-2015 10:36 AM
11-06-2015 12:59 AM
Would you be able to configure it to do just MSCHAPv2/PEAP?
We had a Brother wireless printer that I configued to use this and it works like a champ.
I believe they had an option to ignore any certiciate warnings.
I know it isn't the most secure solution, but it works and seems to be pretty reliable.
11-06-2015 03:42 AM
Very few people have gotten a printer to do PEAP or EAP-TLS successfully..
Aruba Customer Engineering
Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base
Validated Reference Design Guides : http://community.arubanetworks.com/t5/Validated-Reference-Design/tkb-p/Aruba-VRDs