Security

Dear All,

I had provision my Android Devices successfully in CPPM 6.3.

But tried to connect WiFi with 802.1X EAP-TLS. It always failed.

When I checked CPPM Access Tracker below：

And I also checked my Certification chain below：

In CPPM, I could find my devices below：

Anyone help me to solve this issue？

BR

Thanks a lot.

A couple of things :

- Make sure you have TLS enabled under the  802.1x

- Do you have the trus sett to  automatically or manually ?

- Are you using OCSP ?

you appear to have two root CAs in your chain, is that on purpose?

i would check if your client does actually send the correct certificate.

Dear boneyard,

I checked only one Root CA in CPPM.

any idea?

you are now mixing things, at "And I also checked my Certification chain below：" you show a chain with a double root CA. not sure if that might cause issues.

for the rest i would take a step back, what does work? start with something simple, only username / password. move to your own certificates and then perhaps move to onboarding and check it is setup following guides. it is difficult to understand your full setup based on a few screenshots.

if you have support call TAC, they can go through your whole setup more easily.

Yes！ And Automatic trust certificate！

Please see below:

 If you edit ocsp authentication method it should match the URL in the Onboard settings

Hi Victor Fabian,

wehre can I find the "Certificate Authority Settings" on the GUI to copy the OCSP URL?

thx

Markus