Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

PEAP - ACS 3.3 - Verisign intermediate certificate expired

Have installed a Verisign class 3 certificate on ACS 3.3 in order to provide Peap authentication on Wireless client. If we view the certificate when the Wireless client authenticate to ACS, it show the Verisign Intermediate certificate has expired (07/01/2004) (see attached file). Problem is that Peap is not sending all the certificates which was installed on the server.

Accessing the ACS server with SSL (HTTPS), all the certificate information are good. Intermediate certificate installed on ACS is send as well with the issued certificate.

Bug in ACS or normal behavior in Peap ?

2 REPLIES
Bronze

Re: PEAP - ACS 3.3 - Verisign intermediate certificate expired

I think the issue could be because of the Intermediate certificate got expired

New Member

Re: PEAP - ACS 3.3 - Verisign intermediate certificate expired

Yes it is because it is expired, what strange is the following :

That intermediate certificate was installed on the ACS server as well with the site certificate and if we establish a SSL session with the ACS, we can view it Ok (the intermediate one on the ACS).

In peap the ACS is not sending the intermediate certificate as it do in SSL, so we got the error that the certificate is expired because in Windows Verign Class 3 Intermediate certificate is expired in 2004.

I was thinking that Peap will permit us to only install on cerftificate on the server without doing any change on the client side !?

484
Views
0
Helpful
2
Replies
CreatePlease to create content