Wi-Fi Enterprise EAP-TLS connection issue

Tip / Sign in to post questions, reply, level up, and achieve exciting badges. Know more

cross mob
No_Name
Level 3
Level 3
25 sign-ins 10 likes given 5 questions asked

Hi All,

Anyone know about below error while connecting with Wi-Fi enterprise as EAP-TLS

No_Name_1-1677582333398.png

 

Radius server logs:

No_Name_0-1677582286241.png

 

 

0 Likes
1 Solution
No_Name
Level 3
Level 3
25 sign-ins 10 likes given 5 questions asked

Hi 

After doing  #define DEFAULT_JOIN_ATTEMPT_TIMEOUT (8000) this change EAP-TLS is working for me.

Thanks a lot for your help & support.

Thank you!!

View solution in original post

10 Replies
Phanindra_I
Moderator
Moderator
Moderator
250 sign-ins 10 likes given 25 likes received

Hi,

Please let me know the details of your setup (chipset, WICED SDK ver, Custom application or test.console, Wiced certs or your own certs).

Have you tried connecting some other device (can be mobile) to the AP using EAP-TLS security?

Thanks

Chipset : CYW43455

WICED SDK ver : 6.6.1.1

Using own certificates

Tried EAP-TLS with CYW943907AEVAL1F evolution board  using radius server working fine.

Not tried with mobile.

 

Thanks

 

0 Likes
Phanindra_I
Moderator
Moderator
Moderator
250 sign-ins 10 likes given 25 likes received

Hi,

I've tested on my 43455 eval board with wpa2 eap-tls security and I didn't get any error. You are testing wpa2 right?

Below are the few things that you can do -

1.  You can test with the certificates present in the "certs.c" file.

2. You can disable the debug prints and test once since timing plays role in enterprise security connection.

3. Test with other types (maybe with peap)

Thanks

No_Name
Level 3
Level 3
25 sign-ins 10 likes given 5 questions asked

Hi

I tried for EAP-PEAP & TTLS it's working fine. But, for TLS only I'm facing problem.

While verifying MBEDTLS_SSL_CERTIFICATE_VERIFY step it's taking 5-6 sec will it make a problem I don't know.

 

Thanks

0 Likes

Regarding certificate Root CA & User cert are valid only & same Root CA is used in server side also.

 

0 Likes
Phanindra_I
Moderator
Moderator
Moderator
250 sign-ins 10 likes given 25 likes received

Hi,

One more question, Are you using a custom platform of 43455 or an eval board?

Thanks

No_Name
Level 3
Level 3
25 sign-ins 10 likes given 5 questions asked

Hi 

I'm using custom platform not an eval board. Using  i.MX RT1051 microcontroller with SDIO protocol to communicate with Wi-Fi chip.

Thanks

0 Likes
Phanindra_I
Moderator
Moderator
Moderator
250 sign-ins 10 likes given 25 likes received

Hi,

Can you increase the "DEFAULT_JOIN_ATTEMPT_TIMEOUT" in "wwd_wifi.c" file and do a test? You can test with few values like 8000, 10000, 12000, 15000. Let me know the result of the test.

Thanks

No_Name
Level 3
Level 3
25 sign-ins 10 likes given 5 questions asked

Hi,

Thanks for help I'll check all scenario & let you know.

Thanks

0 Likes
No_Name
Level 3
Level 3
25 sign-ins 10 likes given 5 questions asked

Hi 

After doing  #define DEFAULT_JOIN_ATTEMPT_TIMEOUT (8000) this change EAP-TLS is working for me.

Thanks a lot for your help & support.

Thank you!!