Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1639
Views
5
Helpful
3
Replies

Alarm for expired cert...Cant find it

Josh Morris
Level 3
Level 3

‎02-11-2021 07:14 AM

I am getting the following alert for a cert that expired back in August. But I can't find the cert in my system certs, trusted certs, or internal CA. So I can't remove it to stop the alarm. I'm getting the same for my other nodes from ise-adm1.

 

Trust certificate 'Certificate Services Endpoint Sub CA - ise-psn1#00011' expired on Wed; 26 Aug 2020 : Server=ise-adm1

0 Helpful
3 Replies 3

craiglebutt
Level 4
Level 4

‎02-11-2021 07:53 AM

HI

 

I've had this exact same issue at the minute, had a call open with TAC

 

It looks like you Self Signed Certificate is expiring, just need to Generate Self Signing Certificate request for your route on you root CA.

 

Should reboot Nodes, but might and if it does it will be one at a time.

 

Can compare the certs under Certificate Authority Certificate

 

Hope this helps

0 Helpful

Josh Morris
Level 3
Level 3

‎02-18-2021 08:20 AM

I ended up working with TAC. Apparently its not uncommon to delete certs from the UI only to have them persist. They had to be removed from the CLI with root. 

Damien Miller
VIP Alumni
VIP Alumni

‎02-18-2021 02:07 PM

I just saw this on a customer deployment but had not dug in to it. Thanks for providing your resolution! 

0 Helpful
Customers Also Viewed These Support Documents