Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

802.1x authentication for certs issued by different CA

This thread has been viewed 0 times

  • 1.  802.1x authentication for certs issued by different CA

    Posted Aug 27, 2019 09:39 AM
    Hi Everyone,

    Heres our current setup. wired and wireless laptops are authenticating via EAP-TLS using the certs issued by our 1ST CA. CSR are generated and Signed by our 1ST CA. installed the radius certs and key, configured services and policies and all are working fine.

    now the plan is to use our 2ND CA to issue certificates for the IP Phones.

    do I just need to add the RCA and ICA from our 2ND CA to certificate trust list then configure those necessary configuration? there is no need to generate another CSR?

    Im afraid that if i generate another CSR and signed by our 2ND CA then upload as a radius cert to CPPM, it may overwrite the working and existing radius cert issued by 1ST CA.

    Thank You!


  • 2.  RE: 802.1x authentication for certs issued by different CA

    Posted Aug 27, 2019 10:39 AM
    Just need to add the second CA to the trust list


    Sent from Mail for Windows 10