Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
259
Views
1
Helpful
2
Replies

CSCwk70545-Can't add FTD to FMC: Failed to issue certificate to device

fahedhameed
Level 1
Level 1

‎09-08-2025 11:21 PM

Hi, facing this issue when trying to add the same FTD agian in the FMC after deleting it.

Any help would be appreciated.

Thanks.

Labels:
2 Replies 2

Stefan Mihajlov
Level 3
Level 3

‎09-08-2025 11:39 PM

@fahedhameed 

That error usually happens when the FTD still has the old CA/certificate record from the previous FMC registration. When you try to re-add it, FMC can’t issue a new cert because the device still presents the stale identity.

Fix is to clear the old registration info on the FTD and then re-register clean:

  1. On the FTD CLI run:

 
configure manager delete

to wipe the FMC registration state.

  1. If you use NAT, also re-apply the correct configure manager add <fmc_ip> <reg_key>.

  2. Then go back to FMC and add the device again with the same key and management IP.

That forces the device to generate a new cert request and FMC will accept it. If it still fails, make sure the clock/timezone are in sync on both FMC and FTD, because mismatched time can also break certificate enrollment.

–––
Best regards,
Stefan Mihajlov

Mark this post as Helpful if it helped you, and Accept as Solution if it resolved your question.

0 Helpful

MHM Cisco World
VIP
VIP

‎09-09-2025 01:42 AM

Delete or unregistered?

MHM

0 Helpful
Customers Also Viewed These Support Documents