Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
460
Views
0
Helpful
1
Replies

Cisco ISE re-bind a request to the signed certificate issued by that authority.

Marco Noviello
Level 4
Level 4

‎12-17-2019 02:54 AM

Hi guys,

 

there is a way to "re"-bind a request to an already installed certificate.

The point is:

1) create a Certificate Signing Requests on ISE

2) send the CSR to CA

3) receive the certificate from CA

4) bind the certificate to the CSR

5) forget to add the chain to the certificate :-(

 

So there is a possibility to import the certificate and the chain without the Private Key File (then this is on ISE) ?

Or there is a way to extract the Private Key File stored on ISE?

 

Regards

Marco

 

1 person had this problem
0 Helpful
1 Reply 1

Colby LeMaire
VIP Alumni
VIP Alumni

‎12-17-2019 09:49 AM

You don't need to have the whole chain in one certificate.  You can import the Root CA and Intermediate CA certificates into the Trusted Store.  That is what is meant by having the whole chain.  Just that ISE has the system certificate, Intermediate CA cert that signed/issued it, and the Root CA that owns the Intermediate.

0 Helpful
Customers Also Viewed These Support Documents