Hi Guys,
I am setting up an eap-tls lab with IAPs, Clearpass and some windows machines.
I wanted to know:
- After clearpass authenticates the machine with its certificate, what would be the tls tunnel endpoints? in other words, if the authentication is between clearpass and the windows machines, will the tunnel be established between clearpass and the machines or between the IAP and the machines?
- in case both machine and user authentication are implemented, is the user traffic going to be encrypted using the user certificate or the machine certificate?
- in case only the machine authentication is implemented, what traffic is going to be encrypted via the TLS tunnel?
Thanks in advane for any clarification
Regards,