07-04-202102:41 PM - last edited on 03-09-202211:25 PM by smallbusiness
A lot of ISE systems will be reporting that the Trusted Certificate "DST Root CA X3 Certificate Authority" is going to be expiring soon. I believe this certificate is (or was) used by ISE to trust the connection with certain Cisco backend systems.
I have not seen any official notices from Cisco - does anyone know if we can already delete this certificate? Once it's expired it's of no use - just causing alarms.
thanks @hslai - I think it might be helpful to include a certificate removal function in ISE patches as soon as Cisco realises that this cert is no longer required. Some time back there was anothe cert that expired and there were many questions in the community about it.
Or perhaps a field notice or email or something. I subscribe to bug and patch updates and to be honest I stopped reading those because it's meaningless data to scroll through a list of defects - not knowing if any of this affects you or not. But I would have deleted this certificate (and others) on the advice of Cisco, had I known about it.