Security

Reply
New Contributor

CN failure on certificate "name$"

I'm getting a CN failure in CP using EAP-TLS. The Certificate is failing b/c name is being returned as name$. if I use "Strip Username Rules" can i strip that character off when configuring the service? The User Manual just does not explain it well.

what is format if doable? Or even better send me a more detailed faq

Guru Elite

Re: CN failure on certificate "name$"

name$ is valid for machine account.

 

Are you using Onboard or ADCS?

Can you post a screenshot of the error?

Are you doing cert authorization or just authentication?


| Tim Cappalli | Aruba Security | @timcappalli | timcappalli.me |

NOTE: Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba or Hewlett Packard Enterprise.
New Contributor

Re: CN failure on certificate "name$"

2015-11-30 09:09:48,688 [Th 1 Req 3124 SessId R00000226-01-565c58ac] INFO RadiusServer.Radius - rlm_eap_tls: Certificate CN (Computers) does not match specified value (DFC-HP$)


No onboard. Just authentication at this point
Guru Elite

Re: CN failure on certificate "name$"

Where is the certificate issued from?

 

Please try creating a new EAP-TLS authentication method and unchecking authorization required, add it to your service and test authentication again.

 

eap-tls-noauthz.PNG


| Tim Cappalli | Aruba Security | @timcappalli | timcappalli.me |

NOTE: Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba or Hewlett Packard Enterprise.
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: