Security

Reply
Regular Contributor I

Certs revoked despite being still valid?

We have a lot of devices suddenlty being revoked despite stillhaving valid certs, and not in breach of our "last seen on network" period.

 

How do I find out when the device was last seen, or any more info on why the cert has been revoked??

 

Issued To:Revoked At:Revoked:Valid From:Valid To:

user
auser
revoked at
Thursday, 24 November 2016, 3:00 AM
revoked
This certificate has been revoked.
valid fromFriday, 06 May 2016, 11:44 AM
valid toWednesday, 05 May 2021, 12:14 PM

Certificate Status revoked
EAP-TLS: fatal alert by server - certificate_unknown
eap-tls: Error in establishing TLS session

Guru Elite

Re: Certs revoked despite being still valid?

Do you have the inactivity period option enabled in the provisioning profile?

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Regular Contributor I

Re: Certs revoked despite being still valid?

Yes, but this period is set to 60 days, and I know these devices get used daily.. How can I see when they were last seen, or find out more or why the cert has been revoked?  

 

We have started seeing a lot of devices in this state, and ones I know do get used on a regular basis...

 

Thanks

Guru Elite

Re: Certs revoked despite being still valid?

In CPG, do you see anything in the Application Log when you search "revoke"? (Administration > Support > Application Log)


Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: