Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Two HTTPS certificates

This thread has been viewed 0 times

  • 1.  Two HTTPS certificates

    Posted Nov 12, 2017 09:36 PM

    Customer already has a wildcard cert issued by a Public CA.  They want to have a public Guest login page using the publically signed cert, and for internal BYOD/Onboarding/Domain users they want to use a different cert.  This is due to naming (public domain name is different than the corporate one for this entity).

     

    Is there a way to use one HTTPS cert for the MGMT port traffic, and another for the DATA port traffic?  Expecting the answer is "no," what would the suggestions be for this- SAN with entries for the different FQDNs for the two networks that ClearPass would resolve on?



  • 2.  RE: Two HTTPS certificates

    EMPLOYEE
    Posted Nov 12, 2017 09:51 PM
    Hm. Not sure I'm following here. Why would Onboard users not be expecting the public CA-signed cert? Doesn't make sense as these users will not trust an internal/private CA-signed cert.


    To directly answer your question, no.


  • 3.  RE: Two HTTPS certificates

    Posted Nov 12, 2017 09:52 PM
    Not possible …you answered your own question.

    Yes , use a cert with multiple SAN names