Guys,
I am very sorry to ask this question :smileyembarrassed: but I cannot seemt to get clarity on this from what I have read.
In order to on board apple devices are we saying that I need to have my CA (i.e. clearpass) in the chain on trust to a public CA? Also, I mean if I was a public CA (such as verisign) I would be very hesitant to provide a certificate for a subordinate CA I did not manage as effectively you can issue as many certs and you like and there would be no profit for me?
So my captive portal need a cert signed by a well known ca
http://support.apple.com/kb/ht5012
Bu when I issue a certifcate for the TLS part of dot1x? Can this just come from CPPM as a standalone and it issues a PKCS12 or something as part of the onboarding workflow?
I guess I am missing something somewhere. Any help greatly appreciated
thanks