Security

Reply
Frequent Contributor II
Posts: 478
Registered: ‎03-15-2014

Apple device Certificate error with clearpass?

I have apple device giving certficate error while they have a public signed certficate

MVP
Posts: 485
Registered: ‎05-11-2011

Re: Apple device Certificate error with clearpass?

There is no guarantee that having a public SSL certificate won't give warning when connecting on https. I've had customers complain about this and found that even tho the root CA cert is in the device trusted certificate store, but the intermedia isn't and this triggers the error.

So to avoid the error you need a certificate with a chain where all certs in the chain is validated to all devices.

Another thing is to open up for OCSP validation so the device can validate the chain. You do this by finding the ocsp URL's for you cert/-chain and whitelist those sites in the pre-auth role..


Regards
John Solberg

-ACMX #316 :: ACCP-
Intelecom - Norway
----------------------------
Remember to Kudo if a post helped you! || Problem Solved? Click "Accept as Solution" in a post!
Frequent Contributor II
Posts: 478
Registered: ‎03-15-2014

Re: Apple device Certificate error with clearpass?

Thank you will try and feed you back

Frequent Contributor II
Posts: 478
Registered: ‎03-15-2014

Re: Apple device Certificate error with clearpass?

Please tell me how to make clearpass guest certficate to be issued as trusteed certficate in the apple device cause it it is a public cert.

Guru Elite
Posts: 8,036
Registered: ‎09-08-2010

Re: Apple device Certificate error with clearpass?

Did you chain your certificate?
Is the root CA on Apple's trust list?

Sent from Nine

Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP
Search Airheads
Showing results for 
Search instead for 
Did you mean: