ā12-08-2018 07:37 AM
I have just installed ISE 2.4 in 2 node deployment. Just migrated from ACS to ISE for Primary Instance only. Secondary ACS is still running along with Primary ISE. I have installed CSO signed certificates but I am getting this error in the logs:
Error log: Dec 8 09:39:47 209.29.2.228 CISE_Internal_Operations_Diagnostics 0000003664 1 0 2018-12-08 09:39:47.677 -05:00 0000022535 34151 WARN System-Management: Certificate Validation Failed, ConfigVersionId=87, AdminName=Unknown, OperationMessageText=Certificate Validation failed for host: msscidcISE02.mss.tiss, AcsInstance=msscidcISE02.mss.tiss,
These are the certificates:
Solved! Go to Solution.
ā12-08-2018 09:22 PM
ā12-08-2018 01:48 PM - edited ā12-08-2018 01:49 PM
I can't tell from the screenshots, but do you have issuing CA03's public key imported in to the trusted store? The CA that issued the cert for msscidcISE02.mss.tiss? Also CA02 as well, worth confirming both are imported.
Full disclosure, I haven't dealt with this as I have always used a single cert with a SAN for each node, or a wildcard.
ā12-08-2018 09:22 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide