Solved: Re: Import system certificate without the private key file (ISE)

ghermocilla · ‎09-21-2020

Hi,

We reimage our ISE, but unfortunately we only backup the certificate without the private key.

Now we want to import that certificate but a private key is required.

Is it possible to upload the old certificate without using the private key?

We are using Cisco ISE 2.7

Thanks,

Glen

Damien Miller · ‎09-21-2020

Unfortunately not, the way in which public key infrastructure works is that the private key is used to encrypt the communication stream. The public key alone is not enough to accommodate the secure communication. If there is no backup of the private key, then you need a new certificate.

View solution in original post

Damien Miller · ‎09-21-2020

Unfortunately not, the way in which public key infrastructure works is that the private key is used to encrypt the communication stream. The public key alone is not enough to accommodate the secure communication. If there is no backup of the private key, then you need a new certificate.

Import system certificate without the private key file (ISE)

Secure the Private Access with File Inspection and File Type controls

Certificate-based Authentication and the Importance of AD UPN

Updated SAML Certificate Web Security and ZTA is now available

ISE 3.3 system certificate update

VPN3k: How to install/import a certificate with private key