Server 2008 Certificates distinguishable by "hardware type"
Posted on 2012-08-20
in my lab environment I have setup an offline root CA and one SubCA. So far so good, everything is working. Now I'm a little bit lost with the following:
I want to issue a certificate for all network-connected devices and make sure they only are able to connect to specific networks, e.g. VoIP telephones only to the VoIP network, Laptops to LAN 1, Desktops to LAN 2 and so on. What is best practice to make the certificates "tell" what hardware they were issued to so that I can setup the WLAN access point only grant access to the "Laptops".
Thx for any remarks.