Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
573
Views
0
Helpful
3
Replies

Backup certitficates from vManage's cluster

Go to solution
dijix1990
VIP Alumni
VIP Alumni

‎03-13-2023 06:34 AM

I have vManage's cluster with Enterprise certificate, and I want to know is it possible to backup certificates from vManage's? 

for example, if I want to deploy new vmanage and I would like to reuse certificates from old vmanage (csr request and cer file)

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Kanan Huseynli
VIP
VIP

‎03-13-2023 08:36 AM

Hi,

when CSR is generated only public key is attached to it. Device still have private key inside OS. So, there is no way to re-use them same CSR/ Certificate for other vManage (for clustering or for disaster recovery).

In clustering or in DR each vManage device should have its own certificate.

Below document explains cluster creation and troubleshooting:

https://www.cisco.com/c/en/us/solutions/collateral/enterprise-networks/sd-wan/white-paper-c11-741440.html

HTH,
Please rate and mark as an accepted solution if you have found any of the information provided useful.

View solution in original post

0 Helpful
3 Replies 3

Go to solution
dijix1990
VIP Alumni
VIP Alumni

‎03-13-2023 06:38 AM

I thought about it after adding a new manage to the cluster, and this manager lost his certificate. I have no idea why

My way was: (Before it worked fine)

1. Deploy new vManage

2. Generate CSR on web new vmanage

3. Get certificate

4. Install certificate

5. Add new vmanage to cluster

 

0 Helpful

Go to solution
Kanan Huseynli
VIP
VIP

‎03-13-2023 08:36 AM

Hi,

when CSR is generated only public key is attached to it. Device still have private key inside OS. So, there is no way to re-use them same CSR/ Certificate for other vManage (for clustering or for disaster recovery).

In clustering or in DR each vManage device should have its own certificate.

Below document explains cluster creation and troubleshooting:

https://www.cisco.com/c/en/us/solutions/collateral/enterprise-networks/sd-wan/white-paper-c11-741440.html

HTH,
Please rate and mark as an accepted solution if you have found any of the information provided useful.

0 Helpful

Go to solution
dijix1990
VIP Alumni
VIP Alumni
In response to Kanan Huseynli

‎03-13-2023 09:12 AM

It's pity, thanks.. Before cli was closed I can do that, but now root access isn't permitted 

0 Helpful
Customers Also Viewed These Support Documents