02-26-2019 08:23 PM
Hi Experts,
I'm following the guide to integrating ISE with Intune.
In the step of 'Export ISE System Certificate', I got stuck since my customer uses all CA signed certificates separated by Admin, Portal, EAP-Auth, pxgrid service.
Which one shall I export in this case?
Additionally, if it is the one EAP-Auth cert I should export, is it needed to have EKU both client authentication (1.3.6.5.5.7.3.2) and server authentication (1.3.6.1.5.5.7.3.1) in the certificate?
Currently, we only have Server auth for the purpose of client 802.1x EAP-TLS.
Solved! Go to Solution.
02-26-2019 08:36 PM
02-26-2019 08:36 PM
02-26-2019 10:11 PM
02-26-2019 11:31 PM
02-28-2019 11:56 AM
What Mohammed al Baqari said appears correct. It appears Microsoft Intune using the ISE admin certificate(s) to validate the requests and, hence, the client auth on them.
02-28-2019 06:12 PM
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: