08-31-2008 06:55 AM - edited 07-03-2021 04:23 PM
Hi,
My client requires I load a certificate on his 7921 phone with which the phone will authenticate to his radius server. Is this supported on the 7921, and any suggestions on what guide I can use.
I have gone trough a couple but no luck.
Thank you
08-31-2008 02:31 PM
What type of encryption method does your client want to use? EAP-TLS? Here is a link to the supported protocols and how to import a certificate to the 7921 phones.
http://www.cisco.com/en/US/docs/solutions/Enterprise/Mobility/vowlan/41dg/vowlan_ch10.html#wp1045851
09-11-2008 09:50 AM
We know support server validation with PEAP (MS-CHAPv2) in the 1.2(1) release as well. Would import the authentication server cert into the phone via the 7921 webpage.
09-12-2008 04:00 AM
Micheal,
Do you know if there is a bug out that. I heard and not able to try to see if you validate the wrong server cert, that it will still pass authentication?
09-16-2008 01:21 PM
The 1.2(1) release notes indicate that you can now do server validation when using PEAP (MS-CHAPv2). Will have to enable this though as it's disabled by default. Then of course import the authentication server certs into the 7921G phone. This was an enhancement to the original design a was tracked under CSCsm88078.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide