cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

108
Views
0
Helpful
1
Replies
Highlighted
Beginner

Cert Install with ISE Guest Portal

What is the process generate a CSR in ISE? I'm assuming that one creates the CSR, has it signed by an internal CA, and then applies it to the guest portal?

1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
VIP Advisor

Yes essentially the process from a high level is to generate the CSR on ISE, get it signed, install it on ISE and select the portal as the use case. Typically people are having the guest portal signed by a well known external CA though. Guests probably wont have the trust chain for your internal CA, and will then receive a certificate warning when redirected.

There is a whole chapter on certificates in ISE.
https://www.cisco.com/c/en/us/td/docs/security/ise/2-4/admin_guide/b_ise_admin_guide_24/b_ise_admin_guide_24_new_chapter_0111.html

The CSR specific section
https://www.cisco.com/c/en/us/td/docs/security/ise/2-4/admin_guide/b_ise_admin_guide_24/b_ise_admin_guide_24_new_chapter_0111.html#ID961

View solution in original post

1 REPLY 1
Highlighted
VIP Advisor

Yes essentially the process from a high level is to generate the CSR on ISE, get it signed, install it on ISE and select the portal as the use case. Typically people are having the guest portal signed by a well known external CA though. Guests probably wont have the trust chain for your internal CA, and will then receive a certificate warning when redirected.

There is a whole chapter on certificates in ISE.
https://www.cisco.com/c/en/us/td/docs/security/ise/2-4/admin_guide/b_ise_admin_guide_24/b_ise_admin_guide_24_new_chapter_0111.html

The CSR specific section
https://www.cisco.com/c/en/us/td/docs/security/ise/2-4/admin_guide/b_ise_admin_guide_24/b_ise_admin_guide_24_new_chapter_0111.html#ID961

View solution in original post