Hello together, 

we're running our SD-WAN environmnet in the Cloud using version 20.6.1 on all devices. 

We're using also te possibility to get access to our internal AAA server and therefore, 2 vEdge cloud devices were deployed by Cisco Cloud Ops team. We starte bringing all the overlay up an running by using in the first step the Cisco certificates for Controllers and vEdges. Everything was working fine. 

We decided to change to our enterprise certificates. 

1. Certificates of root and intermediate CA were installed without any problems to vManage. They were also deployed to all devices (controllers and vEdges). 

2. We changed the authorization for the controllers to enterprise certificates and installed the new certs on all devices. Controller connection to all devices were up an running fine with enterprise certs. 

3. Next we wanted to change the autorization for the vEdge Cloud devices and changed the setting to enterprise CA (which is recommended in the vManage GUI). We've generated the CSR for the vEdge and signed it with our enterprise CA. We've installed the certificate for the vEdge Cloud device(s) by using the vManage Gui and the certificate was succesfully installed. After that, no communication between vEdge Cloud devices and controllers were possible. 

->By executing the command request "vedge-cloud activate ...." on the vEdge (again) using the chassis numer and the serial number listed in vManage, the vEdge had again a control connection to the vManage, but not to any of the vSmarts. Also, the installed certificate was no more available on the vEdge. 

After a reload of the vEdge device, also the control connection to vManage was not possible anymore. 

Has anyone any experience with such a behavior? Or has anyone succesfully used the Enterprise CA for the vEdge Cloud devices? 

Thank you. 

Regards Christian