Buy or Renew
Buy or Renew
Register Here! - Join us 11/13 for the "Navigating DHCP Processes in SD-Access Network" Community Live event
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3724
Views
0
Helpful
2
Replies

dnac cert is missing in catalyst 9300

parveshtaneja2005
Level 1
Level 1

‎09-12-2019 03:20 PM

Seeing following alert on DNAC for multiple switches.

 

HTTPS is NOT reachable / SCP is reachable
Expected : DNAC certificate has to be installed successfully and Device should be able to reach DNAC via HTTPS
Action : Reinstall DNAC certificate

 

Anyone can point me to right document to re-install DNAC certificate for cat 9300 switches?

 

 

Thanks 

 

7 people had this problem
Labels:
0 Helpful
2 Replies 2

Mike.Cifelli
VIP Alumni
VIP Alumni

‎09-13-2019 06:15 AM

My recommendations:
Ensure http server is enabled on the switch & sourced out the interface that can reach DNAC. Re-provision the device in DNAC. OR find a known good switch with proper DNAC CA configs and copy and paste over. Then troubleshoot from there. You should see pki trustpoint DNAC-CA with a list of commands and see the DNAC-CA certificate. Good luck & HTH!
0 Helpful

parveshtaneja2005
Level 1
Level 1
In response to Mike.Cifelli

‎09-13-2019 06:30 AM

Ensure http server is enabled on the switch & sourced out the interface that can reach DNAC.

- that is configured and no restriction on source interface.

 

Re-provision the device in DNAC. OR find a known good switch with proper DNAC CA configs and copy and paste over.

- I will try copy the certificate form working switch and will let you know

 

Then troubleshoot from there. You should see pki trustpoint DNAC-CA with a list of commands and see the DNAC-CA certificate. Good luck & HTH!

 

 

Thanks you..

 

0 Helpful
Customers Also Viewed These Support Documents