cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
991
Views
0
Helpful
4
Replies

ise integration with splunk

CSCO12550173
Level 1
Level 1

hi there i hope you are doing well

 

we are integration a ise 2.2 with splunk following this guide

 

https://community.cisco.com/t5/security-documents/identity-services-engine-and-splunk-pxgrid-configuration-guide/ta-p/3735814

 

 

but we are having problems with the integration it's giving us root certificate not trusted

how is the hierarchy in ise for this?

 

can be in the other way around, like they create a cert and we import that cert to ise with the privs for pxgrid?

 

 

 

4 Replies 4

howon
Cisco Employee
Cisco Employee

As noted in the document, ISE admin node is the root CA. The ISE admin node is also a sub-CA (This is done to allow redundant ISE admin node to have single hierarchy). Then the PSN will be sub CA below admin node sub-CA. Any of the pxGrid client will be issued certificate by PSN (Or admin node with PSN persona). I suggest using this method as it will not require any changes to the ISE CA setup.

hi howon, thanks for your quick answer, the doubt arise because in what we are doing
the 3 personas from ise are in the same server so the splunk admin were making questions about
so the root and sub-ca is the same certificate?

to get a resume about it :
1 root certificate for all the 3 personas in a standalone ise deploy?
1 pxgrid certificate generated :: Generate Pxgrid Certificate?

They are individual certificates.

Go to ISE admin web UI > Administration > System > Certificates > Certificate Management > System Certificates

Select the system certificate used by pxGrid and click on the tool "View"

Screen Shot 2019-02-16 at 9.03.06 AM.png

hi hslai,
it's already solver, but we take all the certificates from the section from pxgrid
thanks for your help
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: