When configured for SSL termination, a server certificate is the only required certificate needed by the ACE. However, if the CA certificate that signed this server certificate is not in a client's list of trusted certs, this CA cert can also be installed on the ACE and used in a chaingroup so that the client doesn't get a pop-up warning. But CA certs in a chaingroup are typically one or more intermediate CA certificates, not the root CA certificate. See:
This document will provide screenshots to outline the steps to setup
TACACS+ configuration to ACI and also the configuration required on
Cisco ACS server. Please find the official Cisco guide for configuring
TACACS+ Authentication to ACI:
Is it supported or NOT supported? It's a frequently asked question.
Before APIC, release 2.3(1f), transit routing was not supported within a
single L3Out profile. In APIC, release 2.3(1f) and later, you can
configure transit routing with a single L3Out pr...
Cisco Documents are usually accurate, but when it came to the document
on Cisco APIC Signature-Based Transactions it was slightly off the mark.
This document is for those novices to API like me who cant seem to
figure out how to go about performing signat...