Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
627
Views
0
Helpful
2
Replies

ise cert renwel

wyfy-2015
Level 1
Level 1

‎02-07-2018 10:25 PM - edited ‎02-21-2020 10:45 AM

Hi,

ise two nodes primary seconary . Wants to renew the certificate . single certificate is using for eap auth( multi use ) .
What is the procedure to renew it .

What will happen to the eap clients ( windows machines,iphone ,android  ) 

2 ) Can I use the single certificate ( not wild card ) if I add the secondary ise fqdn as SAN ?

Thanks

 

Labels:
0 Helpful
2 Replies 2

Mohammed al Baqari
Level 11
Level 11

‎02-08-2018 01:05 AM

You can use single certificate. You need to import the certificate on the
primary node. Once it restarts, you need to repeat that on secondary node.

Before proceeding with this, make sure that you have your certificate
pushed to all your EAP clients. Both certs should be installed before
starting.

Active EAP sessions won't be impacted but it will impact sessions trying to
connect during that window
0 Helpful

wyfy-2015
Level 1
Level 1
In response to Mohammed al Baqari

‎02-08-2018 01:27 AM

Hi,
" Before proceeding with this, make sure that you have your certificate
pushed to all your EAP clients. Both certs should be installed before
starting. "
I am using public ca for eap instead of internal ca , In that case I hope that it would not be a problem .
Single certificate ( not wildcard ), How it is possible with two nodes ?
Thanks
0 Helpful
Customers Also Viewed These Support Documents