Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Easy way to update SSL Certificates on ACE?

Is there an easy way to update a cert file using ANM?  Currently I delete the cert file using the CLI, TFTP the new cert on via ANM so it goes to both modules, and then have to delete class-map and then re-add it to make the cert take in the CLI.  Going to be doing a bunch of these in the next month and was hoping ANM would have a simpler method?  Or if there is a simpler method than haveing to delete the class-map and re-add it via the CLI that'd be great too.

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: Easy way to update SSL Certificates on ACE?

The way to do this gracefully (this is documented in the ssl config guide) is to:

1. import new cert with a different name than the existing cert.

2. put the new cert name in the appropriate ssl proxy

This will cause the ace to load the new cert into memory and use it for new connections.

The key is to use a new name.

1 REPLY
Cisco Employee

Re: Easy way to update SSL Certificates on ACE?

The way to do this gracefully (this is documented in the ssl config guide) is to:

1. import new cert with a different name than the existing cert.

2. put the new cert name in the appropriate ssl proxy

This will cause the ace to load the new cert into memory and use it for new connections.

The key is to use a new name.

367
Views
0
Helpful
1
Replies
CreatePlease to create content