Security

Reply
uwe
New Contributor
Posts: 2
Registered: ‎04-22-2011

Install Thawte SSL Web certificate onto ClearPass 6.2 VM

Upon installing our valid Thawte SSL for securelogin.mycompanay.net I came across twice an error. 

 

1. Certificate CA "CN=Thawte SSL CA, O="Thawte, Inc.", C=US" must be added and enabled in Certificate Trust List

This error was solved very quick by activating it in the Certificate Trust List.

 

2.Certificate CA "EMAILADDRESS=premium-server@thawte.com, CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, ST=Western Cape, C=ZA" must be added and enabled in Certificate Trust List

This error caused my a bit of a headache. There is a Thawte Premium Certificate installed though but any time I attempted to import the SSL certificate ClearPass prompted above error. It turned out that the pre-installed Thawte Premium Root Certificate is faulty.

 

At the end I removed all pre installed Thawte Root Certificates and reinstalled them by downloading them from Thawte.com

 

Perhaps the post is of help for those who may encounters the same problem.

 

 

Guru Elite
Posts: 7,854
Registered: ‎09-08-2010

Re: Install Thawte SSL Web certificate onto ClearPass 6.2 VM

Thawte tends to have very confusing certificate chains. Two of the
intermediate certs have very similar names.

Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP
uwe
New Contributor
Posts: 2
Registered: ‎04-22-2011

Re: Install Thawte SSL Web certificate onto ClearPass 6.2 VM

I am aware of the Thawte issues. Beeing a Thawte partner for a few years ....

 

Here it was not a naming issue. Somehow a slash found its way into the pre installed certificate.

 

EMAILADDRESS=premium-server@thawte.com, CN=Thawte Premium Server CA/OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, ST=Western Cape, C=ZA

 

 

Search Airheads
Showing results for 
Search instead for 
Did you mean: