a month ago
when I configure Clearpass as a registration authority, I put in the SCEP URL and Challenge, then I fetch the CA cert and receive the chain as expected.
When I go to the the device_provisionning php page on the client to onboard, I receive the following (regardless of device types)
Unable to extract certificate from SCEP response (error:0D07207B:asn1 encoding routines:ASN1_get_object:header too long
error:0D0D106E:asn1 encoding routines:B64_READ_ASN1:decode error
error:0D0D40CB:asn1 encoding routines:SMIME_read_ASN1:asn1 parse error)
From the PKI side the certs are issued and from Wireshark I see 200 accepts from the PKI :
Thoughts on this ?