Configuring EAP-TLS Authentication / Configuring EAP-TLS for Cisco ACS and ISE
Parent topic: Configuring EAP-TLS for Cisco ACS and ISE

Specifying Global Authentication Settings

To specify global authentication settings, in the ACS web interface, perform the following:
  1. Choose System Configuration >Global Authentication Setup.
  2. Under EAP-TLS settings, select the options as displayed in the following screenshot:
    1. Ensure that Allow EAP-TLS is checked.
    2. Select at least one certificate comparison option.
    3. In the EAP-TLS Session Timeout field, Vocera recommends specifying the duration of a full shift (in minutes).
      For example, if a shift is 8 hours long, enter 500 (which allows for a 20-minute overlap in shifts).
    4. Select an option for setting user identity.
      Vocera recommends Use CN as Identity, which uses the Certificate Name as the username to search for in the database.
  3. Click Submit.
Parent topic: Configuring EAP-TLS for Cisco ACS and ISE

This guide last modified: 2019-02-11 01:38.  .   http://www.vocera.com