Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
679
Views
3
Helpful
3
Replies

ISE Upgrade Wizard Needs Admin Cert in Trust Cert Store - WHY?

Go to solution
Arne Bier
VIP
VIP

‎07-25-2023 09:26 PM

Hello,

Playing around in the lab with an ISE 3.2p3 two-node deployment, that I want to upgrade to ISE 3.3, using the GUI Upgrade Wizard.

But I am already failing the pre-upgrade checks, and I don't see why this is a requirement to upgrade an ISE deployment?

I never put Admin certificates in the Trusted store - why would I need to? They are all signed by the same CA whose cert I put in the Cert Trust Store

 

ISE3.2 Full Upgrade to 3.3.png

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
hslai
Cisco Employee
Cisco Employee

‎07-29-2023 04:27 PM

CSCwh08387 During Upgrade, Admin Certificate Should Not Be Required in Trusted Certificate Store

opened to track this.

View solution in original post

3 Replies 3

Go to solution
ahollifield
VIP
VIP

‎07-26-2023 11:12 AM

Yeah I agree, this makes zero sense.

0 Helpful

Go to solution
hslai
Cisco Employee
Cisco Employee

‎07-26-2023 08:50 PM

CSCwe66220 admin certificate required in trusted store to enable secure syslog

is one use case needing it there, but that is rare since ISE default to use ISE Messaging Service for MnT syslog.

I am checking with our team.

Go to solution
hslai
Cisco Employee
Cisco Employee

‎07-29-2023 04:27 PM

CSCwh08387 During Upgrade, Admin Certificate Should Not Be Required in Trusted Certificate Store

opened to track this.

Customers Also Viewed These Support Documents