Accessing ISE

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-05-2018 02:42 PM - edited 02-21-2020 10:55 AM
Dears,
whenever I try to access the ISE 2.2 I get the error as below in chrome & firefox, anything has to be done on the ISE.
err_ssl_server_cert_BAD_format ---in chrome
sec_error_reused_issuer_and_serial----firefox.
- Labels:
-
Other NAC
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-07-2018 01:55 AM
You are probably using self-seigned certificates in ISE and the browsers are complaining because of this.
You can get the browsers to trust the Certs by either updating the browser's list of trusted CAs, or by using a Cert that is signed by a CA the browser already trusts. Obviously, also ensure the ISE's hostname is in DNS, that you access ISE via its DNS hostname, and that the DNS hostname matches the Common Name (or SAN) in the Cert.

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-07-2018 11:27 AM
Dears,
it is a self signed certificate and the certificate are present in trusted certificate store.
thanks
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-02-2020 05:27 AM
Hello Richard,
What are the steps to accomplish this. We tried to reset the cert in the browser but it does not permit this action. Please advise steps required to resync cert at your earliest.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-11-2018 05:31 AM
Hey Adam,
Are you using Kaspersky on the device you are trying to access the ISE console from? If yes try turning off the SSL check in Kaspersky and try again.
If you are not using Kaspersky try this trick here, to allow you to add an exception for this on Firefox:
https://gtacknowledge.extremenetworks.com/articles/Solution/Identify-upgrade-Firefox-Error-code-SEC-ERROR-REUSED-ISSUER-AND-SERIAL as you might have two certificates with the same serial.
Hope that helps
If this was helpful, please vote as helpful by clicking on the star icon below.
-------------------------------------
