NAC framework deployment

Unanswered Question
Mar 4th, 2007

Hi All,

I have a problem with the NAC deployment.

Currently i try to setup the lab for deploy 802.1x solution.

I have follow the step configure the NAD (switch), ACS,....but i still receive the error message that mention i don't have certificate in personal store as credential for authentication.

Anyone can help?

Attachment: 
I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Vivek Santuka Mon, 03/05/2007 - 06:46

Hi,

CTA 802.1x supplicant uses only EAP-FAST.

So On the client you need to either uncheck "validate server certificate" on take the ACS Certificate/Root certificate of the CA Server and add it in the store. To add in the store use :-

ctacert /ui 5 /add "path to certificate" /store "root"

Regards,

Vivek

chenyokechuan Mon, 03/05/2007 - 17:02

Hi,

Thanks for help, may i know how to disable "validate server certificate" on the CTA agent? For the CA, it is MUST be a root CA? if i plan to test it on lab environment, can i setup a standalone/standard CA?

Thanks

Chen

Vivek Santuka Tue, 03/06/2007 - 05:26

Chen,

You can setup a standalone CA or even use the self signed certificate from ACS.

Regards,

Vivek

Actions

This Discussion