02-26-2014 04:52 AM - edited 07-05-2021 12:17 AM
Dear Experts,
We are in process of deploying ISE 1.2 in our environment for BYOD.
The initial step of this process is to configure ISE as an SCEP Proxy and it requires certain configuration on the local CA. We have done all the required configurations on the local CA server.
Now, when we try to connect ISE with the local CA using SCEP RA Profiles, it gives "HTTP Error 403 - Forbidden". The URL we are using is http://ipaddress/certsrv/mscep/mscep.dll.
It seems that the local CA is not letting the ISE access the mscep.dll file. Now I dont understand how to allow ISE to access this file or the url. Please advise if there is any step by step process guide. Although, I have followed the ones from Cisco but it doesn't state how to give ISE the required rights for accessing mscep.dll.
Thanks in advance.
Jay
02-26-2014 04:58 AM
Your better off posting this to the Security AAA forum as they can help you out better since this is related to ISE specifically.
Sent from Cisco Technical Support iPhone App
02-28-2014 02:38 AM
check the following guides
http://www.cisco.com/c/en/us/td/docs/security/ise/1-2/user_guide/ise_user_guide/ise_man_cert.pdf
and if you get any issue try using cisco How to guide that are very useful.
02-28-2014 06:14 AM
Hi Jay,
Please try to follow this guide.
I have no idea where you find an example that you need to put a link for "msecp.dll" file.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: