Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
264
Views
0
Helpful
2
Replies

cisco ise renewal SAML Identity Provider Signing Certificates

CCC3
Level 1
Level 1

‎01-06-2025 01:36 AM

Even if I add a certificate, the existing one doesn't disappear and I can't seem to erase it

So, when the existing certificate expires, it disappears automatically and authentication proceeds with the newly added certificate?

0 Helpful
2 Replies 2

Jonatan Jonasson
Level 4
Level 4

‎01-06-2025 02:12 AM

When you're viewing the certificates in ISE (Administration -> System -> Certificates), and look at the "Used By" column, you see whether the certificate is being used ("SAML") or not ("Not in use")

For certificates that are "Not in use", you should be able to delete them, and you have to do it manually (does not disappear automatically.)

So if you edit your new certificate, and scroll down to "Usage", you can there select "SAML" if you haven't already, and if you want to use that certificate for SAML signing.

0 Helpful

CCC3
Level 1
Level 1
In response to Jonatan Jonasson

‎01-06-2025 03:10 AM

I'm not referring to the certificate.

External Identity Sources -> SAML Id Providers
-> This refers to the certificate of the identity provider configuration.

0 Helpful
Customers Also Viewed These Support Documents