Manualshelf

User's Manual

ManualsBrandsDell ManualsComputer equipmentPowerconnect W-ClearPass Hardware Appliances
81828384858687888990
Public Key Infrastructure for Onboard
During the device provisioning process, one or more digital certificates are issued to the device. These are used
as the unique credentials for a device. To issue the certificate, Dell Networking W-ClearPass Onboard must
operate as a certificate authority (CA). The following sections explain how the certificate authority works, and
which certificates are used in this process.
Certificate Hierarchy
In a public key infrastructure (PKI) system, certificates are related to each other in a tree-like structure.
Figure 10 Relationship of Certificates in the Onboard Public Key Infrastructure
The root certificate authority (CA) is typically an enterprise certificate authority, with one or more intermediate
CAs used to issue certificates within the enterprise.
Onboardmay operate as a root CA directly, or as an intermediate CA. See "Certificate Authorities " on page 97.
For information on setting up certificates when using Onboard in a cluster, see "Certificate Configuration in a
Cluster " on page 86.
The Onboard CA issues certificates for several purposes:
l The Profile Signing Certificate is used to digitally sign configuration profiles that are sent to iOS devices.
n The identity information in the profile signing certificate is displayed during device provisioning.
l One or more Server Certificates may be issued for various reasons ā€“ typically, for an enterpriseā€™s
authentication server.
n The identity information in the server certificate may be displayed during network authentication.
l One or more Device Certificates may be issued ā€“ typically, one or two per provisioned device.
n The identity information in the device certificate uniquely identifies the device and the user that
provisioned the device.
You do not need to manually create the profile signing certificate; it is created when it is needed See
"Configuring Provisioning Settings for iOS and OS X" on page 176 to control the contents of this certificate.
Dell Networking W-ClearPass Guest 6.4 | User Guide Onboard | 85