802.1x PEAP Certificate Options

JohnTylerPearce · ‎11-13-2012

Hey, everyone!. I was pondering on getting a certificate fro ma public CA to maintain easier configuration for end users.

There will be a multitude of devices on this wireless network configured with 802.1x PEAP. (iPhones, iPADs, Droids, and PC's

of course).

If you were to get a certificate from a public CA, I'm assuming this would be just a regular server certificate from GoDaddy, or Verisgn?

Do you guys do self-signed or public certificates?

Stephen Rodriguez · ‎11-13-2012

Either way works, what it depends on is if the device can be told to not have to trust the server certificate. When I had a Droid (granted it was a Droid 1), I had to hack it so that I could tell it not to trust the cert.

But I have had customers that have gone with external certs and it works perfectly fine.

HTH,
Steve

------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered

George Stefanick · ‎11-13-2012

John you doing peap ?

If you do a self signed cert from the radius server you are limited to 1 year .

Sent from Cisco Technical Support iPhone App

Sent from Cisco Technical Support iPhone App

"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
___________________________________________________________