Oh wait I think I just figured out how to do it.. Sorry.
Under your service we need to change the 'Authentication Methods' and select the EAP-TLS that we want to use...
I am testing now
------------------------------------------------------------
Hey,
CPPM Version: 6.1.3.54640
I am trying to setup the OCSP as well.
I am looking under the CPPM > Authentication > Methods
They have [EAP TLS], and [EAP TLS With OCSP Enabled]
And I created one called [EAP TLS With OCSP] because I want to try it and not override the OCSP URL because in my 'Certificate Authority Settings' I 'Specify an OCSP Reponder URL' (Perhaps this is not the same setting?).
In the certificate generated for the client I see the correct URL for the OCSP check that I specified so I am assuming that my client certificate contains the appropriate information to verify the certificate.
Where I am little confused is since there are 3 EAP-TLS types defined how does the the CPPM know which one to use?
I thought that we might change this under: ClearPass Onboard > Configuration Profiles > Network Settings
But you can only select EAP-TLS basically, how do we tell the system which EAL-TLS definition to use?
Hopefully that makes sense.
Thank you,
Cheers