Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

NAC framework deployment

Hi All,

I have a problem with the NAC deployment.

Currently i try to setup the lab for deploy 802.1x solution.

I have follow the step configure the NAD (switch), ACS,....but i still receive the error message that mention i don't have certificate in personal store as credential for authentication.

Anyone can help?

4 REPLIES
Cisco Employee

Re: NAC framework deployment

Hi,

CTA 802.1x supplicant uses only EAP-FAST.

So On the client you need to either uncheck "validate server certificate" on take the ACS Certificate/Root certificate of the CA Server and add it in the store. To add in the store use :-

ctacert /ui 5 /add "path to certificate" /store "root"

Regards,

Vivek

New Member

Re: NAC framework deployment

Hi,

Thanks for help, may i know how to disable "validate server certificate" on the CTA agent? For the CA, it is MUST be a root CA? if i plan to test it on lab environment, can i setup a standalone/standard CA?

Thanks

Chen

Cisco Employee

Re: NAC framework deployment

Chen,

You can setup a standalone CA or even use the self signed certificate from ACS.

Regards,

Vivek

New Member

Re: NAC framework deployment

Hi Vivek,

Thanks a lot, i will try it.

Thanks

Chen

107
Views
0
Helpful
4
Replies
CreatePlease login to create content