Cisco Cisco Identity Services Engine 1.3 전단
安全访问操作指南
#2: ObjectId: 2.5.29.19 Criticality=true
BasicConstraints:[
CA:true
PathLen:2147483647
]
#3: ObjectId: 2.5.29.15 Criticality=false
KeyUsage [
DigitalSignature
Key_CertSign
Crl_Sign
]
#4: ObjectId: 2.5.29.14 Criticality=false
SubjectKeyIdentifier [
KeyIdentifier [
0000: A9 C7 8E 26 9C F5 37 0A E6 5A 15 36 26 D4 A2 06 ...&..7..Z.6&...
0010: 6A C8 79 2C j.y,
]
]
Trust this certificate? [no]: yes
Certificate was added to keystore
步骤
11 将身份密钥库(例如 self2.jks)和信任密钥库(例如 root.jks)复制至 …/samples/bin 文件夹。
测试
pxGrid 客户端和 ISE pxGrid 节点
系统将运行样本
pxGrid 脚本 register.sh 和 session_download.sh 来确保 pxGrid 客户端连接和 pxGrid 注册。会话
下载将确保
ISE MNT 证书和 pxGrid 客户端没有问题。
步骤
1
注册
pxGrid 客户端。
./register.sh -keystoreFilename self2.jks -keystorePassword cisco123 -truststoreFilename root.jks -
truststorePassword cisco123 -group Session -description test -hostname 10.0.0.96 -username JohnMACbook
------- properties -------
version=1.0.0
hostnames=10.0.0.96
username=JohnMACbook
descriptipon=test
keystoreFilename=self2.jks
keystorePassword=cisco123
truststoreFilename=root.jks
truststorePassword=cisco123
--------------------------
registering...
connecting...
connected.
done registering.
connection closed
© 2015 思科系统公司
第
12 页