Self Signed Certificate For ACS

goulin · ‎08-25-2008

Hi,

I am running version 4.1 of the ACS appliance and was wondering if anyone knew of a way to get around the limitation of the 1 year self signed certificate? We had no external CA infrastructure.

Is there a way of creating the CA certificate on an external (temporary) Windows/Linux box and then importing this onto the ACS for use?

andrew.prince · ‎08-26-2008

You just need to create a CER from the ACS, then sign it with your CA.

Micrsoft 2000/2003/2007 comes with it's own CA.

Linux - you just need the "openssl" app.

HTH>

gng4life · ‎09-01-2008

This will be on an isolated network and will only authenticate/authorize a few switches and routers. No MS/Linux on this LAN will use ACS, you still have to create the CER? I could only find where that is needed for EAP, PEAP, HTTPS, Positure Validation, etc. I'm just trying to get the basics working so I can get this started, tested, then move to other things. If you think this is still needed, I'll create the self-signed one but I'm not sure if it will do any good. Thanks for the reply.

andrew.prince · ‎09-01-2008

George,

I am a little confused - you origianl post was about installing a certificate?

Are you now asking if you should?

To get the basics working, you do not need a cert.

HTH>

gng4life · ‎09-02-2008

Andrew,

My apologies, I replied to the wrong conversation. I am sorry for the confusion.