Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have ACS 4.2 124.12 cumulative patches installed. I have enable EAP-FAST in ACS. The CA is selected in the trusted list. When I try to authenticate with the ACS I get a rejection. Wireshark shows in the challenge that this is a 'unsupported Cer...
Pavel,After working with Albert Sun and Igal Katz we found that IOS does not support EKU - extended Key Usage where types of certificate can be specified. So in the cert request, we won't specify any EKU. For EKU aware CA, like ACS or MS CA, it co...
This is from the certificate:EKU = IP security IKE intermediate (1.3.6.1.5.5.8.2.2)KU = Digital Signature, Key Encipherment (a0)Do you know how to ensure that the EKU is Client Authentication and KU is Digital signature,Key Encipherment and Data enci...
