Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1632
Views
5
Helpful
1
Replies

Admin Cert in multinode deployment

Go to solution
kostasthedelegate
Level 4
Level 4

‎04-21-2021 11:08 PM

Hello, 

 

I have ISE 2.6 with 2 PAN and 4 PSN

I would like to change the admin certificate from the default self signed to one form my PKI.

 

When I change it there will be a restart on the node right?

Is it advisable to change it on the PSN also?

 

Thanks and regards, 

Konstantinos

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Damien Miller
VIP Alumni
VIP Alumni

‎04-21-2021 11:30 PM

I would suggest generating a single CSR with all your nodes as SANs, and have that signed by the internal PKI so that it can be installed on all six nodes. This keeps it clean and easy. 

The relevant cert contents would look like this where the CN and first SAN are just a friendly name, and the remaining six are the FQDNs of the nodes. 

CN: ise.yourdomain.com 
SAN: ise.yourdomain.com
SAN: pan1.yourdomain.com

SAN: pan2.yourdomain.com

SAN: psn1.yourdomain.com

SAN: psn2.yourdomain.com

SAN: psn3.yourdomain.com

SAN: psn4.yourdomain.com

View solution in original post

1 Reply 1

Go to solution
Damien Miller
VIP Alumni
VIP Alumni

‎04-21-2021 11:30 PM

I would suggest generating a single CSR with all your nodes as SANs, and have that signed by the internal PKI so that it can be installed on all six nodes. This keeps it clean and easy. 

The relevant cert contents would look like this where the CN and first SAN are just a friendly name, and the remaining six are the FQDNs of the nodes. 

CN: ise.yourdomain.com 
SAN: ise.yourdomain.com
SAN: pan1.yourdomain.com

SAN: pan2.yourdomain.com

SAN: psn1.yourdomain.com

SAN: psn2.yourdomain.com

SAN: psn3.yourdomain.com

SAN: psn4.yourdomain.com

Customers Also Viewed These Support Documents