Wired Intelligent Edge (Campus Switching and Routing)

 View Only
last person joined: one year ago 

Bring performance and reliability to your network with the HPE Aruba Networking Core, Aggregation, and Access layer switches. Discuss the latest features and functionality of HPE Aruba Networking switching devices, and find ways to improve security across your network.
Back to Library

Client does not complete EAP transaction 

Nov 02, 2018 10:26 AM

Problem:

Using clearpass to authenticate a user to Active Directory on the backend, and using EAP-PEAP , EAP-MSCHAPV2 methods, when the client tries to authenticate CPPM gets an error Client Did Not Complete EAP transaction.
 



Diagnostics:

In debugs on the switch you see the request id, and the access challenge come back, and that process repeats.

If you take a wireshark trace from CPPM it aligns with the debugs in that the EAP transaction does not complete and just starts over.



Solution

In the wireshark trace from CPPM, look for the EAP-TLS certificate and see what dates it is valid.

Make sure the date and time on the switch are within the date and time range of the certificate.

If the date and time on the switch are outside the date and time of the certificate, you will get the client did not complete transaction error.

Correct the time on the switch to be inside the dates of the certificate validity, or get a valid certificate whichever is appropriate.

Statistics
0 Favorited
25 Views
0 Files
0 Shares
0 Downloads

Related Entries and Links

No Related Resource entered.