Meraki

Community

Access Manager Authentication Error - EAP TLS

Nandoneves
Here to help
Thursday
Thursday

Access Manager Authentication Error - EAP TLS

Hi everyone,
I'm facing an issue with authentication configured in Access Manager. Random devices are unable to complete authentication using the unique attribute (machine certificate).
The environment is successfully synchronized with Radius in Azure. I validated and re-synced.

The certificate in Meraki matches the certificate on the end device.
I see the error below in the Meraki dashboard:

 

Nandoneves_0-1757614711819.png

There have been no recent changes to the environment.
Has anyone else experienced this same issue?

 

Thankyou.

0 Kudos
4 Replies 4
alemabrahao
Kind of a big deal
Kind of a big deal
Thursday
Thursday

I have a few suggestions for you.

Check the Meraki event logs for timestamps and compare them with the RADIUS logs.
Run a packet capture on the Meraki access point to verify that the RADIUS request was sent and a response was received.
Validate the certificate chain on the client and RADIUS server.
Test with a different device or certificate to isolate the issue.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
PhilipDAth
Kind of a big deal
Kind of a big deal
Thursday
Thursday

What are you using RADIUS if you are using EAP-TLS and Access Manager?  Access Manager can directly authenticate users with certificates.

https://documentation.meraki.com/Access_Manager/Access_Manager_Configuration_Guides/Access_Manager_C...

 

Nandoneves
Here to help
yesterday
yesterday

Hello everyone,


We tried all the recommendations suggested above. We created a new GPO and a new certificate. We re-synced the Meraki cloud and Azure cloud, but without success.
I opened a TAC, and after reviewing it with the engineer, a global issue was identified in Access Manager.

After automatic correction last night, the environment is currently stable.

I appreciate everyone's willingness to support this issue.


Thank you.

0 Kudos
In response to Nandoneves
alemabrahao
Kind of a big deal
Kind of a big deal
yesterday
yesterday

Nada melhor que o bom e velho TAC hehehe.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
© 2025 Cisco Systems, Inc.