cancel
Showing results for 
Search instead for 
Did you mean: 

Multiple Control Servers - Certificates

Multiple Control Servers - Certificates

Jay2009
New Contributor

Hello,

If I am deploying multiple Control servers, do I need to have the names of each server added to the SAN of the certs installed on the Control servers?

I am thinking captive portal cert; yes, and RADIUS cert; no?

 

Am I correct?

1 ACCEPTED SOLUTION

Keene__Scott
Extreme Employee

Hello,

No you do not. There is no specific requirement for this; you can use SAN certs if you'd like, but typically folks deploy a unique FQDN cert for each NAC appliance (I also answered this in the case you created with GTAC).  I’m not sure what you mean by this:  “I am thinking captive portal cert; yes, and RADIUS cert; no?”  You can use the same FQDN cert on a NAC for RADIUS and Captive Portal   ...just don’t use a ‘wildcard’ cert for RADIUS.

 

Regards,

Scott Keene

NMS/NAC Support - Extreme Networks

 

 

View solution in original post

1 REPLY 1

Keene__Scott
Extreme Employee

Hello,

No you do not. There is no specific requirement for this; you can use SAN certs if you'd like, but typically folks deploy a unique FQDN cert for each NAC appliance (I also answered this in the case you created with GTAC).  I’m not sure what you mean by this:  “I am thinking captive portal cert; yes, and RADIUS cert; no?”  You can use the same FQDN cert on a NAC for RADIUS and Captive Portal   ...just don’t use a ‘wildcard’ cert for RADIUS.

 

Regards,

Scott Keene

NMS/NAC Support - Extreme Networks

 

 

GTM-P2G8KFN