Solved: Re: Cisco ISE Multiuse certificate and standalone Certificate

Bhardwajp · ‎04-27-2021

Hi All,

In our environment we are using 2 certificate on all 8 nodes (4 PSN and 2 ADM and 2 MNT)

1: Admin, EAP Authentication, RADIUS DTLS

2 : Portal

Both licenses going to be expire in next t wo month and we are planning renew the certificate.

Is it possible i can use single certificate "Multiuse" on all the nodes.

What is the difference between using certificate per service like admin , portal and EAP ...and using single Multiuse for all the services.

Is portal certificate required on Admin and MNT nodes or it required on PSN nodes only ?

What will be the impact if certificate for the below mentioned services get expired.

1: Admin, EAP Authentication, RADIUS DTLS

2 : Portal

Thanks in advance

Marcelo Morais · ‎04-27-2021

Hi @KBhardwaj

you can use a Single Certificate for multiple services, but doing so is not a recommended practice. A Multi-Use Certificate is good for a Lab use to simplify the test of all features.

Please take a look at: How to Implement Digit Certificate in ISE, check the topic: What Certificate Values Should be Used with an ISE Deployment?

Hope this helps !!!

View solution in original post

Marcelo Morais · ‎04-27-2021

Hi @KBhardwaj

you can use a Single Certificate for multiple services, but doing so is not a recommended practice. A Multi-Use Certificate is good for a Lab use to simplify the test of all features.

Please take a look at: How to Implement Digit Certificate in ISE, check the topic: What Certificate Values Should be Used with an ISE Deployment?

Hope this helps !!!