12-12-2018 11:55 PM
If there any deployment or how-to guides for configuring PSN's in the dmz. In particular the set up where psn's are located both in the internal and dmz domain, syncing back to a PAN and MnT in the internal domain.
If im only using the dmz psn's for guest wifi then really I would only require the guest anchor WLC's to have its radius configured to point to the dmz psn's right?
What about AD? There should be no reason either to have the dmz psn's join the AD domain like the internal psn's?
What about cert wise? Would i need to import the internal CA cert into the dmz psn's as well as the internal psn's?
Solved! Go to Solution.
12-13-2018 12:02 AM
12-13-2018 12:02 AM
12-13-2018 07:22 AM
12-13-2018 07:53 AM
Hi Surendra,
This part is not clear to me "For AD, you can have PSN and DC in the DMZ and have them connected.
For certificates, If you have the same PAN node, you do no need to import any additional internal CA certs.", can you please explain? At the moment my dmz psn's have not joined the AD domain. Is it normal to have the dmz psn's join AD just as the internal psn's would?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide