You may vote for SEC-I-1001 on Aruba Innovation Zone (Partners and Aruba employees have access to that). If you have a wildcard certificate or a Multi-SAN, you can call ClearPass on different names, but the HTTPS certificate can only be issued by one CA and is for all HTTPS traffic on a ClearPass Appliance.
What may be a solution is to put the internal signed cert on the publisher, and place a public signed on the subscriber that you deploy for guest purposes. Or alternatively you could place a reverse proxy in front of your ClearPass to achieve a similar thing.
------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check
https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
------------------------------
Original Message:
Sent: Nov 29, 2022 08:22 PM
From: Brett Verney
Subject: Does ClearPass support multiple HTTPS Server Certificates?
Hi there,
I have a customer who wants to continue to use certificates signed by their own internal CA for Admin and Operator Logins, but use a public CA signed certificate for a new Guest portal.
Is this possible?
Or are all HTTPS functions tied to one HTTPS Server certificate?
------------------------------
Regards,
Brett V
------------------------------