https://community.cisco.com/t5/network-access-control/ise-internal-ca/m-p/3519042#M517722 <HTML><HEAD></HEAD><BODY><P>Hi All</P><P></P><P>One of my customer would like to use ISE internal CA for providing certs to corporate end points as well as for BYOD devices. Hope&nbsp; it is possible to provision different certs for corporate and BYOD so that it can be used to assign different Authorization policies. Appreciate your confirmation.</P><P></P><P>Many Thanks</P><P>V.Venkata Manikandan</P></BODY></HTML> Wed, 21 Feb 2018 11:22:02 GMT VVVENKAT 2018-02-21T11:22:02Z https://community.cisco.com/t5/network-access-control/ise-internal-ca/m-p/3519042#M517722 <HTML><HEAD></HEAD><BODY><P>Hi All</P><P></P><P>One of my customer would like to use ISE internal CA for providing certs to corporate end points as well as for BYOD devices. Hope&nbsp; it is possible to provision different certs for corporate and BYOD so that it can be used to assign different Authorization policies. Appreciate your confirmation.</P><P></P><P>Many Thanks</P><P>V.Venkata Manikandan</P></BODY></HTML> Wed, 21 Feb 2018 11:22:02 GMT https://community.cisco.com/t5/network-access-control/ise-internal-ca/m-p/3519042#M517722 VVVENKAT 2018-02-21T11:22:02Z https://community.cisco.com/t5/network-access-control/ise-internal-ca/m-p/3519043#M517723 <HTML><HEAD></HEAD><BODY><P>Are they expecting to have all endpoints Go through the BYOD flow?</P><P></P><P>I think you might be able to setup different templates for certificate</P><P></P><P>How are you going to different which certificate a machine gets? Perhaps for example if machine authentication passes then redirect corporate BYOD flow and Native supplicant provisioning profile differentiated</P><P></P><P>You should check out the ISE mobility deep dive setup in dCloud and see your different options</P><P></P><P>Sent from my iPhone</P></BODY></HTML> Wed, 21 Feb 2018 15:22:28 GMT https://community.cisco.com/t5/network-access-control/ise-internal-ca/m-p/3519043#M517723 Jason Kunst 2018-02-21T15:22:28Z