Wireless Access

Reply
Frequent Contributor I

ios devices invalid tls version

Hi,

 

i have a site where ios devices are not connecting to the staff network using eap-tls and local termination.

 

Putting a device in debugging showed me :

 

Mar 12 05:54:16 station-down * c4:b3:01:31:ab:d7 ac:a3:1e:22:a5:a1 - -
Mar 12 05:55:39 station-up * c4:b3:01:31:ab:d7 ac:a3:1e:22:a2:41 - - wpa2 aes
Mar 12 05:55:39 station-term-start * c4:b3:01:31:ab:d7 ac:a3:1e:22:a2:41 1 -
Mar 12 05:55:39 client-cert -> c4:b3:01:31:ab:d7 ac:a3:1e:22:a2:41/auth-dv-staff-cert 1261 2548
Mar 12 05:55:39 client-cert -> c4:b3:01:31:ab:d7 ac:a3:1e:22:a2:41/auth-dv-staff-cert 1270 2548
Mar 12 05:55:39 client-cert -> c4:b3:01:31:ab:d7 ac:a3:1e:22:a2:41/auth-dv-staff-cert 17 2548
Mar 12 05:55:39 client-cert verified * c4:b3:01:31:ab:d7 ac:a3:1e:22:a2:41 - -
Mar 12 05:55:39 cert-signature-verify -> c4:b3:01:31:ab:d7 ac:a3:1e:22:a2:41/auth-dv-staff-cert - - verified
Mar 12 05:55:39 client-finish -> c4:b3:01:31:ab:d7 ac:a3:1e:22:a2:41/auth-dv-staff-cert - - invalid tls version
Mar 12 05:55:47 station-down * c4:b3:01:31:ab:d7 ac:a3:1e:22:a2:41 - -

 

I 'suspect' in newer ios versions only tls 1.2 is used.  Which means we need at least firmware 6.4.2.9 on the controller.  And we only have 6.4.2.5.  Could i be correct here?

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: