Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
177
Views
1
Helpful
1
Replies

EAP-TLS 802.1x Client Certificate Validity Period - Best Practise

Go to solution
A32
Level 1
Level 1

‎07-15-2024 08:14 PM

Hi, hoping to get some feedback around best practice on certificate validity periods for EAP-TLS certficates for 802.1x clients.

Thoughts around setting expiry for over 2 years etc.

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
ccieexpert
Level 4
Level 4

‎07-15-2024 10:43 PM

1 year is the most common and  if you can renew using GPO other means/ MDM etc, then that is good. but 1-3 years is OK with 3 being the max.. and you to make sure you have a way to do certificate revocation...

View solution in original post

1 Reply 1

Go to solution
ccieexpert
Level 4
Level 4

‎07-15-2024 10:43 PM

1 year is the most common and  if you can renew using GPO other means/ MDM etc, then that is good. but 1-3 years is OK with 3 being the max.. and you to make sure you have a way to do certificate revocation...

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card