Hello,
I started using the brilliant ISE Data Connect feature on my fully distributed deployment to extract data from the Secondary Monitoring node (SQL API).
However, now ISE is Alarming about the Trusted Certificate with Friendly Name "Data Connect Certificate" which is only valid for 1 year.
On another ISE 3.4 system with Data Connect enabled, I can't find this Trusted Certificate at all. Does ISE 3.4 remove it?
The Cisco ISE 3.3 documentation doesn't mention how to renew this, and then it also mentions using the Admin System Certificate instead.
I am confused now. What do I do with an expiring Trusted Cert for Data Connect?
Accepted Solutions
@Arne Bier , As of ISE 3.3 Data Connect uses the ISE Admin Cert as it always should have done.
I looked at an ISE 3.2.5 instance and played with the DataConnect by deleting the cert, stopping Data Connect, starting Data Connect, and noticed that it regenerated a Data Connect Certificate. Try that and see if it give you another year?
My only other suggestion until you're off of 3.2.x would be to ignore the certificate or trust it as expired.
My iseql.py script includes a -i/--insecure option expressly for this purpose.
@Arne Bier , As of ISE 3.3 Data Connect uses the ISE Admin Cert as it always should have done.
I looked at an ISE 3.2.5 instance and played with the DataConnect by deleting the cert, stopping Data Connect, starting Data Connect, and noticed that it regenerated a Data Connect Certificate. Try that and see if it give you another year?
My only other suggestion until you're off of 3.2.x would be to ignore the certificate or trust it as expired.
My iseql.py script includes a -i/--insecure option expressly for this purpose.
