EAP-TLS is using for machine authentication with Cisco ISE and 802.1X. The root certificate that signed the client certificates is about to expire. I understand we can just add the new root certificate in the trusted store of the ISE servers, but how...