Hi all,
We have a requirement that Apple devices peform 802.1X PEAP authentication against CPPM. Users will authenticate using their AD credentials.
What we have found is that first time users using their Apple iPhone to authenticate against CPPM, they are not able to connect to the WLAN. They either receive a prompt with a mesage saying they can't connect to the WLAN or it keeps attempting to connect but drops off at the end. Under the access tracker is comes up with an error 9002 timeout with the response is EAP failed to complete. Once the user tries a few more times, they are able to complete the authentication and connect to the WLAN.
We confirmed the certificate is installed correctly and the RSSI the client devices are getting is above SNR of 25. We tested this with an Ipad mini running v9.2, Iphone 4S running 7.2, and Andrioid devices but no issues connecting first time. However, we are able to replicate this issue with an iPhone 5 and 6 using an account authenticating against CPPM the first time. Once the client has been authenticated, the issue seems to have gone away for that particular user.
Any advice on what this issue could be? We have a TAC case opened and confirmed so far that issue is not related to time taken to perform AD lookups. We have seen in some occaisions that an AD access-challenge is sent but no reply is sent back from the client. Would like to see what the wider audience think about this issue.