I have 2 css11503's in one armed active/passive mode. I have applied ssl certs on both boxes, one of them gives me the message that key and file are not valid (works fine on primary), I've done a show ssl file and the cert in question is there, when i do a delete ssl file 'xx' it reports the file does not exist so i try to re-import and this fails because 'file already exists'!! Reboot hasn't helped. I have deleted/reimported the rsa key, has anyone else seen this? I am running version 08.10.1.06, should I upgrade to a better version?
backout of llama and I could then delete the file using the 'clear ssl file xx.pem' command. The following command::
CSS11501(debug)# ap_file delete c:/CertStore/ssl/
didn't work, as it said you cannot delete Certfiles, I was trying to avoid the ssl clearfiles command (TAC's 3rd option) as there are quite a few on there and I didn't want to reconfigure the whole lot!
Finally have the app session reporting UP and no warnings about ssl configs not the same!
Topology & Design:
Two ACI fabrics
Stretching VLANs using OTV
Both fabrics are advertising BD subnets into same routing domain
Some BDs(or say VLANs) are stretched, but some are not.
Endpoints can move betwee...
VMware Trunk Port Group is supported from ACI version 2.1
VMM integration must be configured properly
ASA device package must be uploaded to APIC
ASAv version must be compatible with ACI and device package version
Topology &Design:Traffic flow within same fabric:Endpoint moves to Fabric-2Bounce Entry Times OutTraffic Black-holedSummarySolutionAppendix:
In the Previous articles of ACI Automation, we are using Postman/Newman a...