Wired Intelligent Edge (Campus Switching and Routing)

Aruba Switch Automatic Certificate Download From Clearpass (XX.16.08.XXX)

MVP Expert
MVP Expert
Requirement:

Download The Certificate From Clearpass To The Switch



Solution:

For this to work, two commands need to be added to the switch.  See Configuration below.



Configuration:

The following 2 commands will stay in the config.

It will also cause the certificate to download in .pem file format. I would recommend they be done in the order shown below.

   Switch(config)# radius-server host 10.206.163.107 clearpass

   Switch(config)# crypto ca-download usage clearpass retry 3



Verification

Now I have the certificate from Clearpass downloaded to the switch.
There will also be a corresponding log entry noting it was downloaded successfully. 


TestAcs(config)# show crypto pki ta-profile


Profile Name   Profile Status                 CRL Configured  OCSP Configured
--------------- ------------------------------ --------------- ---------------
IDEVID_ROOT    Root Certificate Installed 

user.user@h... Root Certificate Installed    No               No
COMODO_CA   Root Certificate Installed    No              No

GEOTRUST_CA  Root Certificate Installed    No             No

ARUBA_CA        Root Certificate Installed    No              N 
ADDTRUST_CA Root Certificate Installed    No                o
o

NOTE:    See The Attached PDF For Additional Detail


Attachments:
Certificate_download_v2.pdf
Version history
Revision #:
1 of 1
Last update:
‎06-04-2019 04:51 PM
Updated by:
 
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: