Tips for finding Knowledge Articles

  • - Enter just a few key words related to your question or problem
  • - Add Key words to refine your search as necessary
  • - Do not use punctuation
  • - Search is not case sensitive
  • - Avoid non-descriptive filler words like "how", "the", "what", etc.
  • - If you do not find what you are looking for the first time,reduce the number of key words you enter and try searching again.
  • - Minimum supported Internet Explorer version is IE9
Home  >
article

KB-4050: Error prompted when connecting to Wi-Fi with EAP-TLS authentication method

Centrify Identity Service, Mac Edition ,  

29 June,17 at 10:16 AM

Applies to: All versions of Centrify DirectControl on all version of Mac
 
Question:
 
To set up Wi-Fi on Mac with EAP-TLS authentication, certificate is deployed automatically (using GPO) on the Mac.
 
However, when trying to connect to the Wi-Fi, an error message is received stating "Invalid Password" as shown below:

User-added image
 
What could be the possible reasons and what settings can be checked to troubleshoot?
 
Answer:
 
One of the possible reasons is related to the certifcate deployed.
 
There is a requirement of how EAP-TLS and PEAP works with certificate authentication in AD environment. Please refer to the following Microsoft article, section "Client certificate requirements"
 
http://support.microsoft.com/kb/814394
 
(Note: Centrify will not be responsible for the content or availability and it was provided as a courtesy only)
 
One important point to note is: "The Subject Alternative Name (SubjectAltName) extension in the certificate contains the user principal name (UPN) of the user."
 
Please check if the UPN has been added to certificate's SubjectAltName attribute. If it still doesn't work after adding this, please contact Centrify Technical Support team for further investigation.
 
Note: Centrify does not support PEAP until Centrify Suite 2014.

Still have questions? Click here to log a technical support case, or collaborate with your peers in Centrify's Online Community.