Problem:
Using clearpass to authenticate a user to Active Directory on the backend, and using EAP-PEAP , EAP-MSCHAPV2 methods, when the client tries to authenticate CPPM gets an error Client Did Not Complete EAP transaction.
In debugs on the switch you see the request id, and the access challenge come back, and that process repeats.
If you take a wireshark trace from CPPM it aligns with the debugs in that the EAP transaction does not complete and just starts over.
In the wireshark trace from CPPM, look for the EAP-TLS certificate and see what dates it is valid.
Make sure the date and time on the switch are within the date and time range of the certificate.
If the date and time on the switch are outside the date and time of the certificate, you will get the client did not complete transaction error.
Correct the time on the switch to be inside the dates of the certificate validity, or get a valid certificate whichever is appropriate.
© Copyright 2024 Hewlett Packard Enterprise Development LPAll Rights Reserved.