Re: Generate a New Certificate on a Cisco SX-80

albertlatshaw · ‎05-16-2023

Hello,

I have a Cisco sx80 that has a expired certificate on it. When I logon to the administration manager and go to security and look at the current expired certificate the delete button is grayed out for me..

I am looking to regenerate CSR for certificate ... A reboot does not work on this...

Any help would be awesome.

b.winter · ‎05-17-2023

I think, you cannot regenerate a self-signed certificate on the endpoint itself.
Either try to factory reset the endpoint, or generate a new certificate and private key and install them on the endpoint.

On the other hand:
If you don't use encrypted communication (e.g. SIP/TLS) then you don't need a valid certificate.
Just the browser will display you a error message, when opening the Web-GUI of the endpoint.

albertlatshaw · ‎05-17-2023

Other then Factory reset how would you generate a new certificate if the administration section doesn't give you the option to? The STIG calls for a updated signed certificate.

We do use encrypted comms

b.winter · ‎05-17-2023

Nobody said, that you need to do it on the endpoint. Ever heard of OpenSSL? Or just let your internal CA generate a Cert / private key.
But anyway, in the other thread, you have all the solutions available from the endpoint's perspective

Nithin Eluvathingal · ‎05-20-2023

AFAIK a reboot will help you generate the expired certificate.

b.winter · ‎05-17-2023

Here is a link to the same question:
https://community.cisco.com/t5/telepresence-and-video-infrastructure/roomkit-sx80-a-certificate-is-about-to-expire-please-update/m-p/4525045#M103758