Hi
In the certificates do you have the same format of the common name and SAN on the machines working and not working?
In your AD source what is the query to find to computer account?
Can you from the Access Tracker dialogue click the button Show Logs and paste the log
------------------------------
Best Regards
Jonas Hammarbäck
MVP Guru 2024, ACEX, ACDX #1600, ACCX #1335, ACX-Network Security, Aruba SME, ACMP, ACSA
Aranya AB
If you find my answer useful, consider giving kudos and/or mark as solution
------------------------------
Original Message:
Sent: Aug 17, 2024 08:14 PM
From: johnisccp
Subject: eap-tls: Error in establishing TLS session
I have GPO that push out the machine certificate to the windows 11 machines. We have a few machines that are not able to connect to the SSID and when I look at the clearpass logs I get this error below. I compare the thumbprint and cert on the one that are working and the one that is not working. Everything looks the same as to the certificate and running netsh wlan show profile command. I ran the pcap and there is nothing that pop out telling me what the client was denied. I am hoping someone can assist me or know the issue.
Error Code: | 215 |
Error Category: | Authentication failure |
Error Message: | TLS session error |
|