I've searched and searched and can't quite find a thread on here with the same symptoms. What I'd like to acheive is doing machine authentication with our Macs using a certificate assigned from our AD CA. I've got what I think is a very basic service configured, but the client keeps failing with "user not found". According to Access Tracker, it's not looking at AD as the authentication source even though it's specified.
-Mac laptop (10.13.4) joined to AD
-It's getting the AD, ClearPass, and trusted CA certs via profile manager (I'm 99.9% sure this is all working as it should)
-AD CA cert installed in ClearPass trust list
-EAP TLS with authorization checkbox unchecked
-AD authentication source with default settings, working fine for EAP PEAP on production SSID
What am I missing?