01-26-2023 12:35 PM
Will updating the Identity certificate for an IOS XE switch or router cause traffic loss for GETVPN?
I am updating the certificates for ISAKMP policy authentication to a cert signed by New Certificate Authority (CA) intermediate server. It will have be signed by the same Root CA of the Identity certificate that is currently in place now for GETVPN ISAKMP policy.
01-26-2023 12:52 PM
@Dakenrick the certificate is used for authentication when establishing the inital establishment of the tunnel, so you should be fine to renew without causing traffic loss.
01-26-2023 02:00 PM
i do not see any issue, but if you are cautious let other side engineer available for help
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide