Security

Reply
New Contributor

CN failure on certificate "name$"

I'm getting a CN failure in CP using EAP-TLS. The Certificate is failing b/c name is being returned as name$. if I use "Strip Username Rules" can i strip that character off when configuring the service? The User Manual just does not explain it well.

what is format if doable? Or even better send me a more detailed faq

Guru Elite

Re: CN failure on certificate "name$"

name$ is valid for machine account.

 

Are you using Onboard or ADCS?

Can you post a screenshot of the error?

Are you doing cert authorization or just authentication?


Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
New Contributor

Re: CN failure on certificate "name$"

2015-11-30 09:09:48,688 [Th 1 Req 3124 SessId R00000226-01-565c58ac] INFO RadiusServer.Radius - rlm_eap_tls: Certificate CN (Computers) does not match specified value (DFC-HP$)


No onboard. Just authentication at this point
Guru Elite

Re: CN failure on certificate "name$"

Where is the certificate issued from?

 

Please try creating a new EAP-TLS authentication method and unchecking authorization required, add it to your service and test authentication again.

 

eap-tls-noauthz.PNG


Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: