3
The root certificate authority (CA) must be configured using the ACS Certification Authority Setup
configuration page.
4
The root CA must be a trusted CA in the Edit Certificate Trust List configuration page.
5
If you create the server certificate using an intermediate CA, the root CA must be configured for every
CA in the chain between the root CA and the server certificate. This also applies to a user certificate created
using an intermediate CA. The following are examples of using intermediate CAs:
a
Wi-Fi-Root-CA is the root CA.
b
Wi-Fi-Intermediate-CA-srv is the intermediate CA (signed by Wi-Fi-Root-CA) that signed the server
certificate to be installed on ACS.
c
Wi-Fi-Intermediate-CA-sta is the CA certificate that signed the user certificate to be installed on the
client.
6
In addition to the certificate setup, a user account that matches the common name of the user certificate
must be created.
7
All the CA certificates in the certificate chain need to be installed and trusted as shown in the following
figure.
Figure 10: Installed and Trusted CA Certificates
PEAP-GTC and PEAP-MSCHAPV2 Setup
All CA certificates in the certificate chain need to be installed and trusted. A user account must be created ,
which can have the same user ID as in the AD.
Cisco Desktop Collaboration Experience DX650 Administration Guide, Release 10.1(1)
89
Security for Voice Communications in WLANs
To Next Page
Loading...
