Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
422
Views
0
Helpful
1
Replies

Is there a non user-interactive cert renewal mechanism with ISE BYOD?

Go to solution
Arne Bier
VIP
VIP

‎09-27-2018 05:54 AM

Customer commented today that they were under the impression that the ISE BYOD solution has the ability to renew a client's certificate without user intervention (i.e. supplicant performs an auto enrollment prior to the cert expiration).  I am pretty sure this is not the case, and that the process is very manual (i.e. ISE has to redirect user to a portal and user goes through all the motions again as they did when they initially on-boarded).

 

It's my understanding that in order to do what my customer is expecting, you would need an app that lives on the device (like an MDM app) that can initiate the SCEP etc.

 

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee

‎09-27-2018 06:06 AM

You’re correct byod is all about user onboarding devices themselves as they are not managed but the company.

If they want more hands off need to look into mdm scripting sccm emm type solutions

But even with mdm the user still has to accept some things and click buttons

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee

‎09-27-2018 06:06 AM

You’re correct byod is all about user onboarding devices themselves as they are not managed but the company.

If they want more hands off need to look into mdm scripting sccm emm type solutions

But even with mdm the user still has to accept some things and click buttons
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents