Security

Hello,

I would need support about the radius certificate operation. I have to renew my CPPM radius certificate and I have a cluster with one publisher and three subscribers, right now there are users authenticating through EAP-TLS and I have some doubts:

- If I'm going to renew my certificate, uploading another one with the same data, do I need to make any change in my user's supplicants related to "check server's certificate"? I understand that it would not be necessary
- What are all "services and/or features" related to the radius certificate? I would like to know how it is going to impact to the service this "certificate renew", I understand that it is not going to have any impact but I would like to study all assumptions.

Thank you very much in advance.

Regards.

------------------------------
//
------------------------------

If the client supplicants are properly configured and the EAP server certificate's root and subject name remain the same, then there should be no impact to clients.

All RADIUS authentication in CPPM will briefly "blip" when the EAP server certificate is changed.

------------------------------
Tim C
------------------------------

Original Message:
Sent: Apr 26, 2021 06:43 PM
From: Abraham Lopez
Subject: Radius Certificate

Hello,

I would need support about the radius certificate operation. I have to renew my CPPM radius certificate and I have a cluster with one publisher and three subscribers, right now there are users authenticating through EAP-TLS and I have some doubts:

- If I'm going to renew my certificate, uploading another one with the same data, do I need to make any change in my user's supplicants related to "check server's certificate"? I understand that it would not be necessary
- What are all "services and/or features" related to the radius certificate? I would like to know how it is going to impact to the service this "certificate renew", I understand that it is not going to have any impact but I would like to study all assumptions.

Thank you very much in advance.

Regards.

------------------------------
//
------------------------------

Thank you very much for your support Tim!!!

------------------------------
//
------------------------------

Original Message:
Sent: Apr 27, 2021 01:25 PM
From: Tim C
Subject: Radius Certificate

If the client supplicants are properly configured and the EAP server certificate's root and subject name remain the same, then there should be no impact to clients.

All RADIUS authentication in CPPM will briefly "blip" when the EAP server certificate is changed.

------------------------------
Tim C

Original Message:
Sent: Apr 26, 2021 06:43 PM
From: Abraham Lopez
Subject: Radius Certificate

Hello,

I would need support about the radius certificate operation. I have to renew my CPPM radius certificate and I have a cluster with one publisher and three subscribers, right now there are users authenticating through EAP-TLS and I have some doubts:

- If I'm going to renew my certificate, uploading another one with the same data, do I need to make any change in my user's supplicants related to "check server's certificate"? I understand that it would not be necessary
- What are all "services and/or features" related to the radius certificate? I would like to know how it is going to impact to the service this "certificate renew", I understand that it is not going to have any impact but I would like to study all assumptions.

Thank you very much in advance.

Regards.

------------------------------
//
------------------------------