Cisco Wireless - Validate server certificate
It is a pain to uncheck the "Validate server certificate" box everytime. Seems easy to add a server cert to Cisco wireless network (ie ACS), from Cisco ACS
This guide describes certificates created with a Microsoft CA and also contains steps for when you use a self-signing certificate, which is supported as of Cisco Secure Access Control Server (ACS) 3.3. The use of a self-signing certificate streamlines the initial Protected Extensible Authentication Protocol (PEAP) installation considerably since no external CA is required. But, at this time, the default expiration period of the self-signing certificate is only one year and cannot be changed. This is standard when it comes to server certificates. But since the self-signed certificate also acts as the root CA certificate, this can mean the installation of the new certificate on every client every year when you use the Microsoft supplicant unless you do not check the Validate Server Certificate option. Cisco recommends that you use self-signing certificates only as a temporary measure until you can use a traditional CA. If you wish to use a self-signing certificate, proceed to the self-signing certificates section.
Subscribe to:
Post Comments (Atom)
Hi I happened to land up to ur post while googling about certificate installation. I have a doubt here which may be you could help me out with. I have created a self signed certificate at the ACS server side. Now how do I use the certificate and key (.cer and .key) files as that of the root certificate to generate certificates at the client side. My client is a Linux client and I am using the Cisco ACS version 4.1. Bye!
Unknown
October 24, 2008 at 4:34 AMHey my id is foreverfrnd@gmail.com Just in case you could reply to r post or mail me.... would be very helpful
Unknown
October 24, 2008 at 4:37 AM