04-03-2014 06:22 AM - edited 03-10-2019 09:36 PM
We are going to change IP address on 1121 (ACS 5.3) and 3415 (ACS 5.5) appliances.
Do we need to renew the server certificates on them? These certificates are issued by an external CA and are used for EAP-TLS client authentication.
04-04-2014 11:30 AM
Hi Daniel,
Changing the IP on the ACS will reset the management certificate.
usually certificates has DNS host names for CN and are reverse resolvable.
So, its better to get a new certificate, but changing it in the DNS server also works.
Regards
Ed
04-08-2014 12:58 AM
I tried a number of operations on ACS, such as changing IP address, changing hostname, creating NIC bonding, and they all result in a message saying that a new http certificate will be created. Although I don't really understand why it needs to create a new one when creating NIC bonding.
Anyway, we need to relocate an 1121 appliance with ACS 5.3 and it needs to operate again in the same day. However, generating a new certificate with new IP address requires a few days. How can I handle this situation?
04-06-2014 11:28 PM
Yes, you need to renew the server certificate. ACS 5.5 allows you to send log messages or any traffic over a secure TCP connection.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide