07-07-2015 04:26 AM - edited 07-05-2021 03:31 AM
Hi All,
We are in situation where we have to authenticate two SSID users with EAP TLS authentication and both ssid user will be authenticated by different CA authority. for example one by versign and one by internal CA. is it possible to achieve ? can we use Certificate Retrieval for EAP-TLS Authentication option on ACS to achieve our requirement. We are using ACS 5.7
07-07-2015 06:30 AM
you need to add the trusted CAs in the store, in that case , if two diff. clients with two diff. CAs issued certs , can authenticate themselves.
07-07-2015 10:14 PM
Thanks for your reply. So you mean it will work i I add CA cert in trusted store in ACS even though one of the certificate in ACS is selected for EAP authentication ??
Please confirm if i understand it correctly. As far as my knowledge ACS can not authenticate user with multiple certificate issued by different CA.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide