Just started a new position as a Network admin in a location that uses Clearpass and Aruba AP's. We have been having an issue with Windows 11 clients connecting saying that the root certificate for this network is invalid. Group policy is set to validate Cert, simply telling it not to check the cert allows 11 to connect, but I would rather make sure the Cert is Solid across everything.
When I compare the Certificates that are in the trust list in clear pass to those that are in the CA I can see that the serial numbers are different. However when I try and import the Current Certs from the CA I get an error saying the Certificate already exists.
I did notice that the Root CA Cert in the Certificate Store does match the cert of the CA. So I am wondering if because the Root CA cert already exists ion the certificate store page it wont allow me to import it into the trust list.
OR
Does Clearpass do some sort of Decimal/Hex conversion of the Serial number when it displays it so that it would appear differently between MMC and Clearpass but it is really the same cert?