Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
225
Views
0
Helpful
2
Replies

Cisco ISE - Computer Certificate authentication

acapit
Level 1
Level 1

‎06-11-2025 03:53 AM

Hey,

I'm doing a new pilot to test some stuff.

I'm trying to authenticate a PC with external certificate. I create a new policy that checks the "Issuer - Fingerprint SHA-256" but for some reason when I'm looking in the ISE Radius logs all I see that the field "Issuer - Fingerprint sha-256" is "not_found" I cant seem to find a reason why its acting like this.

Does anyone have any ideas?

I'm using ise 3.3 patch 4

0 Helpful
2 Replies 2

andrewswanson
Level 7
Level 7

‎06-11-2025 08:37 AM

Hi
Do you have the certificate (that signs the PC certificate) installed in Administration < Certificates > Trusted Certificates on ISE?

Your policy for "Issuer - Fingerprint SHA-256" should then reference that certificate installed on ISE.

hth
Andy

0 Helpful

acapit
Level 1
Level 1
In response to andrewswanson

‎06-12-2025 12:11 AM

Yes we have the CA certificate that signed the PC certificate in the path you mentioned.

Just to clarify I am looking at the authentication logs and the endpoint has every other field related to the certificate expect from the Issuer SHA-256

0 Helpful
Customers Also Viewed These Support Documents