Solved: Re: ISE Cert for IOT devices - Page 2

cxo-179682 · ‎01-06-2021

Hi Experts,

Trying to deploy certificate from ISE to IOT devices for security purposes, but can anyone share which docs can i refer to ?

- create iot device cert from ISE (export to device)

- import ISE cert to the device

- authenticate based on the cert provided (authentication and authorization profiles)

I've been searching the docs, but been going in circles and couldnt find a complete doc.

TIA

Arne Bier · ‎01-21-2021

congrats. If you have found any of our interactions useful then you can tick the "helpful" icon and then eventually click the button "Accept as Solution"

shreyiot · ‎09-22-2023

To deploy certificates from Cisco Identity Services Engine (ISE) to IoT devices for enhanced security, you can follow these steps:

Generate an IoT device certificate on ISE: Access ISE's Certificate Authority (CA) to create a certificate for the IoT device. Ensure it's configured with the necessary details and exportable.
Import ISE certificate to the device: Install the ISE CA certificate on the IoT device's certificate store, allowing the device to trust certificates issued by ISE.
Configure authentication and authorization profiles: Set up authentication policies in ISE, associating them with the IoT device certificate. Create authorization profiles that define access rights based on the device's certificate attributes.
Test authentication: Verify the setup by having the IoT device attempt to connect, utilizing its certificate for authentication. Ensure the ISE policies correctly grant or deny access based on the certificate attributes.

While Cisco provides documentation, consider consulting Cisco's official documentation and forums for more detailed instructions tailored to your specific ISE and device configurations.