amigan_99
asked on
Cisco ACS second root certificate
I asked a related question earlier - but as I'm about to deploy I noticed a detail. If the current root CA has " Trust for client with EAP-TLS" checked If I add the second root CA and intermediary cert - should I also have " Trust for client with EAP-TLS" checked on the new certificates? Or does that need to only be checked in one place or another?
The earlier Q: My security group asked me to add root and intermediate certs to Cisco ACS so we can use that for wifi EAP TLS. Where I'm getting logged down is that I see two different places for adding certs.
1) Users and ID Stores/Ex ID Stores/Certificate Authorities. There is currently an internal root cert there. But I don't see an intermediate issuing cert.
2) Sys Admin/Configuration/Local Certs.
Do I just add the root cert and intermediate cert to the first location? Anything I need to do with Local Certs? Any CSRs that need to be generated and fulfilled?
The earlier Q: My security group asked me to add root and intermediate certs to Cisco ACS so we can use that for wifi EAP TLS. Where I'm getting logged down is that I see two different places for adding certs.
1) Users and ID Stores/Ex ID Stores/Certificate Authorities. There is currently an internal root cert there. But I don't see an intermediate issuing cert.
2) Sys Admin/Configuration/Local Certs.
Do I just add the root cert and intermediate cert to the first location? Anything I need to do with Local Certs? Any CSRs that need to be generated and fulfilled?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
It all went in OK and nothing broke! Thanks so much Craig.
ASKER