Yealink Forums

Full Version: SIP-T58 and 802.1x with EAP-TLS
You're currently viewing a stripped down version of our content. View the full version with proper formatting.
Hello, I have a handful of Skype enabled SIP-T58 devices on firmware version I am attempting to enable 802.1x via the web interface using EAP-TLS.

I have uploaded my CA certificate and a test device certificate. The identity field is filled with the subject of the device certificate. My RADIUS server is Microsoft NPS. My network policy has a constraint of NAS port type Ethernet and Calling station ID of the MAC address of the phone (for testing purposes). I'm seeing denied entries in my logs so I know it's hitting the right network policy. I have policy constraints of PEAP with Smart Card or other certificate.

I'm expecting the test phone to authenticate but my NPS logs keep showing "The client could not be authenticated because the Extensible Authentication Protocol (EAP) Type cannot be processed by the server." It seems the phone is sending something NPS isn't expecting. Are there any more detailed guides than the "fill in the blanks" instructions?
Does anyone use 802.1x with these phones?
Reference URL's