We're starting to look at authenticating our computers (and iOS devices) via EAP-TLS, which seems to require some kind of machine certificate. Anything I search for seems to be pointing to using an MS AD certificate server, but we're hoping to use the built in PKI server in Casper.
Our 802.1x authentication server will be FreeRadius.
Has anyone looked at this and can point me in the right direction?
Can one use the internal pki ca of the jss server and the generated computer certificats to be used in a 802.1x scenario. The mdm computer certificat should open the port o the switch (ethernet).
Is that possible and is someone having more info on how to setup that ?
JSS 9.7.2, Cisco Switches, 389 Directory Server