cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Announcements
Choose one of the topics below to view our ISE Resources to help you on your journey with ISE

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

292
Views
0
Helpful
2
Replies
Highlighted
Beginner

ise cert renwel

Hi,

ise two nodes primary seconary . Wants to renew the certificate . single certificate is using for eap auth( multi use ) .
What is the procedure to renew it .

What will happen to the eap clients ( windows machines,iphone ,android  ) 

2 ) Can I use the single certificate ( not wild card ) if I add the secondary ise fqdn as SAN ?

Thanks

 

2 REPLIES 2
Highlighted
VIP Advisor

You can use single certificate. You need to import the certificate on the
primary node. Once it restarts, you need to repeat that on secondary node.

Before proceeding with this, make sure that you have your certificate
pushed to all your EAP clients. Both certs should be installed before
starting.

Active EAP sessions won't be impacted but it will impact sessions trying to
connect during that window
Highlighted

Hi,
" Before proceeding with this, make sure that you have your certificate
pushed to all your EAP clients. Both certs should be installed before
starting. "
I am using public ca for eap instead of internal ca , In that case I hope that it would not be a problem .
Single certificate ( not wildcard ), How it is possible with two nodes ?
Thanks