Hi all, I already have 2-tier Microsoft PKI infrastructure. One standalone offline rootCA and one subordinate CA. Is it possible to add Packetfence PKI as another subordinate CA, but to be in the same level as Microsoft subordinate CA? Will Packetfence work with Microsoft CA or it can only work as a standalone PKI infrastructure. What I want to accomplish is more robustness. I want Packetfence CA to issue certs to Radius supplicants for EAP-TLS and another Microsoft Subordinate is used for issuing client authentication and server authentication certs for AD clients. I am writing about the design like on this site https://blogs.technet.microsoft.com/askds/2009/09/01/designing-and-implementing-a-pki-part-i-design-and-planning/ under section Two-tier hierarchy.
_______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
