Re: Accessing ISE

adamgibs7 · ‎05-05-2018

Dears,

whenever I try to access the ISE 2.2 I get the error as below in chrome & firefox, anything has to be done on the ISE.

err_ssl_server_cert_BAD_format ---in chrome

sec_error_reused_issuer_and_serial----firefox.

RichardAtkin · ‎05-07-2018

You are probably using self-seigned certificates in ISE and the browsers are complaining because of this.

You can get the browsers to trust the Certs by either updating the browser's list of trusted CAs, or by using a Cert that is signed by a CA the browser already trusts. Obviously, also ensure the ISE's hostname is in DNS, that you access ISE via its DNS hostname, and that the DNS hostname matches the Common Name (or SAN) in the Cert.

adamgibs7 · ‎05-07-2018

Dears,

it is a self signed certificate and the certificate are present in trusted certificate store.

thanks

r1127hyduk · ‎09-02-2020

Hello Richard,

What are the steps to accomplish this. We tried to reset the cert in the browser but it does not permit this action. Please advise steps required to resync cert at your earliest.

AlexPi · ‎05-11-2018

Hey Adam,

Are you using Kaspersky on the device you are trying to access the ISE console from? If yes try turning off the SSL check in Kaspersky and try again.

If you are not using Kaspersky try this trick here, to allow you to add an exception for this on Firefox:

https://gtacknowledge.extremenetworks.com/articles/Solution/Identify-upgrade-Firefox-Error-code-SEC-ERROR-REUSED-ISSUER-AND-SERIAL as you might have two certificates with the same serial.

Hope that helps

------------------------------------------------------------------
If this was helpful, please vote as helpful by clicking on the star icon below.
-------------------------------------