06-27-2015 01:01 PM - edited 03-10-2019 10:51 PM
Hi All ,
i have Cisco ISE 1.4 Appliances , i facing Error while configuring Failover . i have attached the Error Sreenshot.
Please Advise .
06-27-2015 02:20 PM
This error indicates that the servers do not trust the Certificate Authority that issued the ISE server certificates. If you are using certificates that were issued by a public CA (GoDaddy, VeriSign, etc) then you will need to import the root CA certificate in the trusted certificate stores in ISE.
If you are using self-signed certificates then you will need to:
1. Export the certificate from the secondary node (that you are trying to join)
2. Import it in the "Trusted Certificates" store in your primary node
3. Check the box that says "Trust for authentication within ISE"
4. Try to join the secondary node again.
Thank you for rating helpful posts!
06-27-2015 04:34 PM
Thanks Neno ,
i will apply the workaround you have mentioned and will be able to update you after 2 days .
many thanks
06-27-2015 06:42 PM
No problem. Let us know how it goes. Here are a couple of links from Cisco with the exact information needed:
Certificate Export/Import Process for HA:
Setting up Distributed Deployment:
Thank you for rating helpful posts!
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: