Cloud Managed Networks

Reply
Highlighted
New Contributor

EAP-TLS configuration with Aruba Central

I'm hoping to configure EAP-TLS on Aruba Central. I'll be deploying client certs from a Microsoft certificate server, but I'm liking for the best way to implement RADIUS. I assume that if I use the internal radius, I won't be able to use CRL or OCSP to check for revoked certs, is this correct? I haven't seen anywhere to configure OCSP in the interface.

Highlighted
Contributor II

Re: EAP-TLS configuration with Aruba Central

Which RADIUS/EAP server are you using? Aruba Central does not provide non-visitor authentication services.

Highlighted
New Contributor

Re: EAP-TLS configuration with Aruba Central

I was referring to this document:

 

https://help.central.arubanetworks.com/2.5.1/documentation/online_help/content/access-points/cfg/security/auth_servers.htm?Highlight=eap-tls

 

This indicates I should be able to configure EAP_TLS with either an external or Internal RADIUS server. For internal, the virtual controller would need a server and CA cert.

 

But there is no mention of OCSP or CRL checking using the Internal method.

Highlighted
Contributor II

Re: EAP-TLS configuration with Aruba Central

Local EAP termination should not be used in production.
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: