i have a pretty simple setup, 2 admin/mon node and 2 PSN
BothPSN have public cert installed and on the admin, i did add a private CA root cert.
Problem: the CA root cert was upgraded from a SHA1 to SHA256RSA. I imported the new CAroot to the CA store on the primary admin node and activated the 'trust for client authentication' but i get a: could not initialize eap-tls,eap-fast,peap. Both cert have the same name, same issuer
Question: Wich certificate are being uses for eap-tls authentication. should i delete the old one on CA store?
endpoint are still using sha1 and some sha256.
am i right to think that client to server is using the CAroot and server to client is using publicCert ?
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...