What, if any, drawbacks are there to using Internal CA generated certs (ex. Microsoft CA Server) vs. 3rd Party Certs?
Besides the obvious drawback that you have to add the internal CA server to all the NAC devices and I'm guessing clients running the NAC Agent must also trust the internal CA server as well....
Are there any limitations on what can be done with clients that are not necessarily running the NAC Agent software with using an Internal CA?
Any other limitiations?
What is the recommended cert implementation?