Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
287
Views
0
Helpful
1
Replies

Digital Certificates in ISE with different domain

jitendrac
Level 1
Level 1

‎06-03-2024 03:56 AM

Hi,

Can digital certificate deployment be possible in different domains?

Example 

Let say we want to use Model 1: Single Certificate per Node. Used for all Services (How To Implement Digital Certificates in ISE - Cisco Community

  • PAN has Certificate Subject CN as ppan.example.com 
  • one PSN has Certificate Subject CN as psn1.example.com and Subject Alternative Name for guest portal as guest.example.com

We want to introduce one more PSN in another domain (other.net ) with all necessary DNS entry for other.net and example.com. 

can we have other PSN having Certificate Subject CN as psn2.other.net and Subject Alternative Name for guest portal as guest.example.com ?

 

 

 

0 Helpful
1 Reply 1

ahollifield
VIP
VIP

‎06-03-2024 05:22 AM

Not sure I am following 100% but I think what you are describing should work just fine.  It would be much better though to have a guest only PSN in A DMZ.  Rather than allow guests to talk to the ISE portal over the internal network.

0 Helpful
Customers Also Viewed These Support Documents