Техническая Инструкция для Cisco Cisco Identity Services Engine Software
Contents
Introduction
Prerequisites
Requirements
Components Used
Background Information
Configure
Verify
Troubleshoot
Introduction
This document describes the configuration and functionality of Identity Services Engine (ISE)
certificate provisioning portal.
certificate provisioning portal.
Prerequisites
Requirements
Cisco recommends that you have basic knowledge of these topics:
ISE
●
Certificates and certificate authority (CA) servers.
●
Components Used
The information in this document is based on these software and hardware versions:
Identity Service Engine 2.0
●
Windows 7 PC
●
Background Information
The certificate provisioning portal is a new feature introduced in ISE 2.0 that can be used by end
devices to enroll and download identity certificates from server. It issues certificates to devices that
cannot go through the onboarding flow.
devices to enroll and download identity certificates from server. It issues certificates to devices that
cannot go through the onboarding flow.
For example, devices such as point-of-sale terminals cannot undergo BYOD flow and need to be
issued certificates manually.
issued certificates manually.
The Certificate Provisioning Portal allows a privileged set of users to upload a certificate request
(CSR) for such devices; generate key pairs, and then download the certificate.
(CSR) for such devices; generate key pairs, and then download the certificate.
On ISE, we can create modified certificate templates and end-users can select a suitable
certificate template to download a certificate. For these certificates, ISE acts as a certificate
authority (CA) server and we can get the certificate signed by ISE internal CA.
certificate template to download a certificate. For these certificates, ISE acts as a certificate
authority (CA) server and we can get the certificate signed by ISE internal CA.