06-23-2023 08:48 AM
I recently configured my globalprotect agent to look for a machine certificate including a specific OID to avoid a confusing selection process on devices with multiple client certificates signed by the same CA. Our original configuration started requesting users to select which certificate to use. I wanted to avoid this confusion by including an OID so globalprotect knew exactly what certificate to use. Unfortunately, the users are still prompted to choose a certificate. However, they are now asked to choose the Intermediate certificate that signs the client cert. I'm wondering if the OID must be applied to the intermediate certificate, or is it possible I'm missing something here?
GlobalProtect 6.1.1
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
