Home > Community > Technology > Wireless Access > EAP-PEAP Termination with new controller certifica...

Wireless Access

Reply
Topic Options
torelo
Contributor I
torelo
Posts: 38
Registered: ‎06-05-2014

EAP-PEAP Termination with new controller certificate - Android not connecting

Options

‎11-16-2016 07:04 AM

Hi,

 

one of our customers bought a new public-signed cert for his controller.

The controller is configured for EAP-Termination with MSCHAP and has a database connection to a RADIUS server (I know it would be better to terminate with RADIUS direct).

 

Since he is using the new certificate, all the android devices can't connect to the wifi. All the android devices respond with 'wrong password'. Windows 7 and 10 machines are running fine with the new server-certificate.

 

In the log I see the message:

deauth from sta: xxxxxx Reason: Response to EAP Challenge failed

 

The controller is a 3200 with 6.2.1.4 running.

 

Any ideas what could be possibly wrong with those androids or the config?


Sven
ACMP + ACCP
Alert a Moderator
Message 1 of 4 (311 Views)
Reply
0 Kudos
MVP MVP
MVP
jrwhitehead
Posts: 992
Registered: ‎04-13-2009

Re: EAP-PEAP Termination with new controller certificate - Android not connecting

Options

‎11-17-2016 05:50 AM

First thing I'd check is if the Android clients trust the new certificate. They might not have the necessary CA cert..

Cheers
James

-------------------------------------------------------
-------------------@whereisjrw-------------------
------------------------blog-------------------------
ACCX #540 | ACMX #353 | ACDX #216
-----------Mobility First Expert #11----------
-------------------------------------------------------

If a reply adequately addresses your issue, please click on the "Accept as Solution" and "Give Kudos" button so this information can benefit other users via search.
Alert a Moderator
Message 2 of 4 (241 Views)
Reply
0 Kudos
torelo
Contributor I
torelo
Posts: 38
Registered: ‎06-05-2014

Re: EAP-PEAP Termination with new controller certificate - Android not connecting

Options

‎11-17-2016 06:29 AM

Hi,

 

the CA is in the list of those android devices.


Sven
ACMP + ACCP
Alert a Moderator
Message 3 of 4 (238 Views)
Reply
0 Kudos
torelo
Contributor I
torelo
Posts: 38
Registered: ‎06-05-2014

Re: EAP-PEAP Termination with new controller certificate - Android not connecting

Options

‎11-21-2016 06:35 AM

A controller update to 6.4.4.10 solved this issue. Seems that there was an incompatibility with EAP or the used TLS version


Sven
ACMP + ACCP
Alert a Moderator
Message 4 of 4 (186 Views)
Reply
Search Airheads
turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

© Copyright 2017 Hewlett Packard Enterprise Development LP
Powered by Lithium