Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
862
Views
0
Helpful
2
Replies

Using a Certificate to Authenticate Mobile devices to WLC/ACS

tbene0616
Level 1
Level 1

‎02-28-2018 04:25 PM - edited ‎07-05-2021 08:19 AM

Our CIT department is deploying iPhones (MobileIron) to employees.  We purchased a Certificate from Network Solutions and the Cert is installed on all the phones and MobileIron Servers.

They have requested to use this Cert to Authenticate as the means to Authenticate to the Wireless network.  The Wireless network they connect to is a "guest" network tunneled to a DMZ Anchor controller.  

Is this possible to only use the Cert to Authenticate to the Wireless Lan / Cisco ACS?

I don't believe this is a standard 802.1x EAP-TLS configuration.....

Any help would be greatly appreciated.

Labels:
0 Helpful
2 Replies 2

Flavio Miranda
VIP
VIP

‎02-28-2018 05:17 PM

Hi @tbene0616

 It is possible to only use cert and this is standard 802.1x/TLS as long as you have cert chain properly deployed.

 However, for Guest network cert don't make sense. Cert is common for corps SSID when you can control every device.

 Guest usually you don't have control over devices which makes really complicate install certs. Thats way web portal the best solution for guest.

 

 

-If I helped you somehow, please, rate it as useful.-

 

 

0 Helpful

tbene0616
Level 1
Level 1
In response to Flavio Miranda

‎03-01-2018 01:54 PM

Flavio,

Would I just need to install the root and server cert on the ACS?

Is there a way to install the Cert on the WLC and authenticate locally on the WLC and bypass the ACS. 

Thanks.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card