Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
318
Views
4
Helpful
2
Replies

Cisco ISE Certificate in use

rasmus.elmholt
Level 7
Level 7

‎05-09-2017 05:41 AM - edited ‎03-11-2019 12:42 AM

Hi

I have an ISE server with a certificate that is about to expire, but i cannot see if it is used anywhere.

How do i find out if it is in use or just installed by mistake.

It is installed under trusted certificates and the line reads:

What does the users mean?

Regards

Rasmus

Labels:
0 Helpful
2 Replies 2

Arne Bier
VIP
VIP

‎05-16-2017 07:32 PM

The column that contains 'Users,Tele' is the Subject Common Name of that certificate (i.e. the name of the system that you're trusting)

This certificate is not used for EAP-TLS because it doesn't have the 'Endpoint' trust set.  Therefore you may have this certificate in place to trust other ISE servers in your multi-node deployment?

Check under System Certificates whether you have installed a certificate for Admin usage, and whether that certificate was signed by the same certificate you're asking about in your Trusted Certificates section.

rasmus.elmholt
Level 7
Level 7
In response to Arne Bier

‎05-23-2017 05:31 AM

Hi Arne

I dont have multi-node deployment and the certificate is not used for admin access.

I did try to disable it and nothing broke so it is most likely a certificate installed without ever being used.

Regards,

0 Helpful
Customers Also Viewed These Support Documents