Lab Minutes Forum

Technical Discussion => Security => Topic started by: Kojot on February 27, 2019, 09:31:14 AM

Title: ISE 2.1 self signed certificates - Renew
Post by: Kojot on February 27, 2019, 09:31:14 AM
hi all!

I do not find anything in any manulas regarding certificate on ISE server and renew option in self-signed cert(only import the new one is described). Currently I do not use  any internal or external CA. current self-signed cert will be not valid in few weeks and I would like to extend it for next year. When I did a change and put in renew field 1 year - I see that inside system certifcates the valid date is changed .the same after export and import that new one to Trusted certicates store on ISE Server. but when I logged in i see that in browser old certificates still exist. Is it neccessary to restart the ISE application ?
Ise didnt restart after i save certificate with new extended Valid date.
I have a distributed deployment 2xAdmin 2 x monitor 2x PSN

thx for help !!
Title: Re: ISE 2.1 self signed certificates - Renew
Post by: MC on March 09, 2019, 11:53:07 AM
When you make changes to the cert, ISE service  always need to be restarted. Although you should be prompted that it will happen automatically, if you weren't, you might want to try to restart manually. But before you do that, try to clear browser cache to make sure the copy of cert you see was the browser cache copy.
SimplePortal 2.3.7 © 2008-2024, SimplePortal