Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1101
Views
2
Helpful
2
Replies

EAP certificate.

Go to solution
dazza_johnson
Level 5
Level 5

‎04-19-2017 05:14 PM

Hey guys, with HTTPS certs in ISE we can use a SINGLE certificate on all ISE nodes and use the SAN field in the certificate to match each ISE nodes hostname. This is good as a single certificate for guest HTTPS sessions across the whole ISE deployment.

My questions is; can you also do this for EAP? In other words, use a single EAP certificate across all ISE nodes and leveraging the SAN fields within the certificate. Not sure if this is either recommended or supported, but keen to here some feedback.

Thanks

DJ

1 Accepted Solution

Accepted Solutions

Go to solution
hslai
Cisco Employee
Cisco Employee

‎04-19-2017 05:23 PM

Sure, we may apply the same to that for EAP. In case you have read it, I would recommend How To: Implement ISE Server-Side Certificates

View solution in original post

0 Helpful
2 Replies 2

Go to solution
hslai
Cisco Employee
Cisco Employee

‎04-19-2017 05:23 PM

Sure, we may apply the same to that for EAP. In case you have read it, I would recommend How To: Implement ISE Server-Side Certificates

0 Helpful

Go to solution
dazza_johnson
Level 5
Level 5
In response to hslai

‎04-19-2017 08:20 PM

Cool - you can use the same EAP cert on all nodes and the CN is not really tied to the ISE FQDN - it can be anything really.

Customers Also Viewed These Support Documents