Security

 View Only
last person joined: 9 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Expand all | Collapse all

Clearpass return error: TLS Handshake failed in SSL_read with error:140940E5:SSL routines:ssl3_read_bytes:ssl handshake failure

This thread has been viewed 11 times
  • 1.  Clearpass return error: TLS Handshake failed in SSL_read with error:140940E5:SSL routines:ssl3_read_bytes:ssl handshake failure

    Posted Aug 22, 2024 08:43 AM

    appreciate your expert advice.

    I have a clearpass cluster of 5 units. each unit for 1 office. Currently this is happening in one of the unit (subscriber)

    I do not have any issue with windows laptop connecting to my network on wired or wifi which will authenticate using 802.1x.

    But my mac user (macbook) keep getting the error TLS Handshake failed in SSL_read with error:140940E5:SSL error on wired or wireless. This happens to all my mac-users.

    Please also note that this is only happen to this site/unit, all other site does not have this issue.

    Any advise on how to resolve this is appreciated.

    Thanks



  • 2.  RE: Clearpass return error: TLS Handshake failed in SSL_read with error:140940E5:SSL routines:ssl3_read_bytes:ssl handshake failure

    EMPLOYEE
    Posted Aug 22, 2024 09:51 AM

    Double check the RADIUS certificate imported to that node, make sure there's no differences to other locations.

    Open a TAC case for further troubleshooting.



    ------------------------------
    Carson Hulcher, ACEX#110
    ------------------------------



  • 3.  RE: Clearpass return error: TLS Handshake failed in SSL_read with error:140940E5:SSL routines:ssl3_read_bytes:ssl handshake failure

    Posted Aug 22, 2024 09:25 PM

    Thank you for the advice but as mentioned all my windows endpoint is working. they have no issue connecting to network via the clearpass authentication. It is only those with macbook. Shouldnt windows or macOS getting the same cert from clearpass. If windows work, macOS should also work right?



    ------------------------------
    Daniel
    ------------------------------



  • 4.  RE: Clearpass return error: TLS Handshake failed in SSL_read with error:140940E5:SSL routines:ssl3_read_bytes:ssl handshake failure

    EMPLOYEE
    Posted Aug 22, 2024 09:40 PM

    No, the supplicants for Windows and Mac, and the certificate trust mechanisms, are very different.  I'm going to assume that you have the configuration correct on the Mac devices or you'd be complaining that none of them work anywhere.  That leaves figuring out what is unique about the one location and that ClearPass node.

    Point the Wi-Fi authentication at a different cluster node, check the local node for differences in the certificate installation, and/or make sure that the endpoint configuration is consistent with everywhere else.  If none of that points at an issue, open a case with TAC for deeper troubleshooting.



    ------------------------------
    Carson Hulcher, ACEX#110
    ------------------------------



  • 5.  RE: Clearpass return error: TLS Handshake failed in SSL_read with error:140940E5:SSL routines:ssl3_read_bytes:ssl handshake failure

    Posted Aug 23, 2024 03:20 AM

    Hi,

    Do you have the same radius certificate on all members?

    May be a different system parameters on this server? Try to compare with another.

    Regards,



    ------------------------------
    StephaneLALARDIE
    ------------------------------