cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

287
Views
0
Helpful
2
Replies
Highlighted
Cisco Employee

ISE authenticate cert from different issuer

Hi Experts,


A customer is considering to delpoy BYOD with ISE and machine certificate authentication for IoT devices, since the coporate endpoints have already installed coporate CA signed certificate, but IoT endpoints have no certificate yet. Customer would like to setup ISE as internal CA to issue ISE signed certificate as to IoT endpoints, so the question is, is a ISE able to authenticate both IoT endpoints and BYOD endpoints which signed by internal CA and coporate CA?


Thanks in advance.

1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Cisco Employee

2 REPLIES 2
Highlighted
Cisco Employee

Highlighted
Cisco Employee

As long as you install the trusted chain on ISE then should work fine

Issuance of certs from the internal ca will need to be a customer created automated process using our certificate provisioning portal and or the API

The BYOD process is only automated for Windows OS X Apple iOS android and chrome book

Content for Community-Ad