07-13-2022 05:57 PM
Hello,
ISE 3.1 displays a great warning when trying to import an Admin certificate with a lifetime of greater than 398 days. It's well known that Apple started this trend, and I have not tested whether Safari enforces this yet. But I can confirm that I was able to install a 5 year certificate, and neither Firefox, Chrome nor Edge had any complaints about it. I have to add, that the cert was created by internal PKI, and not from a public CA (I assume public CAs no longer issue certs >12 months)
Has anyone had a bad experience with a cert that is valid for such a long lifetime?
Below is the message in ISE 3.1 when trying to import such a certificate.
Solved! Go to Solution.