Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

CPPM: EAP-TLS with CRL checking

This thread has been viewed 3 times

  • 1.  CPPM: EAP-TLS with CRL checking

    Posted Jun 10, 2019 08:23 AM

    Hi All!

     

    What do I need to configure and check to be sure CPPM takes into account CRL while doing EAP-TLS? I see CRL distribution point URL in the certificate issued by ADCS and I have added CRL link to Clearpass Administration-> Certificates -> Revocation Lists. The last one is successfully downloaded as I see in logs. Anything else? Do I need to modify the default EAP-TLS auth method?

     

    Thank you.



  • 2.  RE: CPPM: EAP-TLS with CRL checking
    Best Answer

    EMPLOYEE
    Posted Jun 10, 2019 08:30 AM
    Nothing needs to be done. CRL is always evaluated.