Security

Hi All,

 

Testing an Onboard configuration and during the QuickConnect process of changing the network settings, the Onboard Client attempts to install a certificate, but a popup displays stating the server cannot be validated and should we install. I don't think I had this prompt before so I don't know what I'm missing.

 

Any ideas how to get this to not display? We are OK with not validating certificates on the install.

 

We have AOS 6.4 and Clearpass 6.4

 

Tested this on Win7 and Win10 so far and same result.

 

This will always come up during Onboarding for Windows. Any application that
installs to the cert store will receive this prompt.

Is there a possibility of pushing the correct certs out via GP so no users will have to accept this?

Even if you push out certs, it will install it again as part of the Onboard
process.



Just curious, if you have the capability to push out certificates, why are
you using Onboard?

Customer does not want to push out certificates, originally planned to allow the Onboard to do the installation or "push", but wasn't aware of the certificate prompt. I think we will likely just deal with the prompt.

 

Thanks for the  help!

It's the equivalent to the prompt on Apple devices asking you trust the
Onboard certificate initially.



The certificate is foreign to the user profile and device so there needs to
be verification.