Comprar o Renovar
Comprar o Renovar
¡Meraki ya está disponible! ¡Bienvenidos, miembros de Meraki! Más información aquí.
cancelar
Activar sugerencias
La sugerencia automática le ayuda a obtener, de forma rápida, resultados precisos de su búsqueda al sugerirle posibles coincidencias mientras escribe.
Mostrando los resultados de 
Buscar en lugar de 
Quiere decir: 
cancel
Iniciar una conversación
146
Visitas
0
ÚTIL
1
Respuestas

CISCO ISE error adding third node to deployment

SupportAC
Level 4
Level 4

el ‎05-27-2026 12:19 AM


Hi,

I need to add a third node to ISE deployment. When i go to PAN to register new node. I introduce FQDN, user, pass but i receive this error: Certificate Signature Verification failed CN= Company1 CAROOT, DC=Company1, DC=com: FQDN

I verified that the CAROOT and CA intermediate are in PAN and new node. How can i fix the issue? any idea?

Etiquetas:
0 Útil
1 RESPUESTA 1

aleabrahao
Meraki Community All-Star
Meraki Community All-Star

el ‎05-27-2026 04:01 AM

The FQDN you enter in the PAN must be exactly the same as the one in the new node's certificate.

This means it must match the CN or one of the SAN entries.

If there is no character-by-character match, ISE will reject it with this error.

Verification on the new node via CLI:

show crypto pki certificates ISE

Or GUI:
Administration > System > Certificates > System Certificates

Check the CN/SAN and confirm that it matches the FQDN you are using.

I am not a Cisco employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Útil

Navegue y encuentre contenido personalizado de la comunidad

Documentos de Seguridad Videos de Seguridad Otros Eventos de Seguridad
Customers Also Viewed These Support Documents