Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1025
Views
0
Helpful
2
Replies

MDM MaaS360 Cert expiring

Go to solution
mitchp75
Level 1
Level 1

‎01-02-2019 08:48 AM

For our Guest Wireless Deployment we use MDM to bypass the AUP, although I wasn't the person to integrate this originally it appears easy enough to grab the Certificate from a Browser to then import into ISE. This is the site: https://m3.maas360.com/emc/ 

 

I'm assuming this is the same site for anyone using this so my question is has anyone recently replaced the certificate in the Trusted Store, what was your experience? The new Cert also has different Intermediate and Roots so those will also need replaced correct? Recently I replaced the EAP Cert in out other deployment but the root/intermediate was the same so I left them alone.

 

I see documentation on how to integrate but not really much on maintenance.

 

Thanks 

0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee

‎01-03-2019 07:50 AM

have you checked with the MDM vendor on what certs are needed? Likely exporting from the browser would work but best to confirm

View solution in original post

0 Helpful

Go to solution
mitchp75
Level 1
Level 1
In response to Jason Kunst

‎01-04-2019 09:57 AM

Jason - while I was waiting for TAC I did reach out to the IBM Security team who provided me with the replacement Cert which has the same Intermediate and Root. I then added it to ISE and removed the expiring one.... I see successful Authentications via the MDM policy so it appears solid. 

 

Thanks for your continued help!

 

Mitch

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee

‎01-03-2019 07:50 AM

have you checked with the MDM vendor on what certs are needed? Likely exporting from the browser would work but best to confirm
0 Helpful

Go to solution
mitchp75
Level 1
Level 1
In response to Jason Kunst

‎01-04-2019 09:57 AM

Jason - while I was waiting for TAC I did reach out to the IBM Security team who provided me with the replacement Cert which has the same Intermediate and Root. I then added it to ISE and removed the expiring one.... I see successful Authentications via the MDM policy so it appears solid. 

 

Thanks for your continued help!

 

Mitch

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents