Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.


ACS certificate expiration


we are using PEAP authenticaction with ACS 3.2 and MS CA (server 2003)... Certificate on ACS will expiry soon. Are there any recommendations, steps how update (reinstall) certificate



Hall of Fame Super Red

Re: ACS certificate expiration

Hi Milan,

Have you looked at this doc? Perhaps it will help get you started;

Updating or Replacing a Cisco Secure ACS Certificate

Use this procedure to update or replace an existing CiscoSecure ACS certificate that is out-of-date or out-of-order.


Caution This procedure eliminates your existing CiscoSecure ACS certificate and erases your Certificate Trust List configuration.


To install a new ACS certificate, follow these steps:


Step1 In the navigation bar, click System Configuration .

Step2 Click ACS Certificate Setup .

CiscoSecure ACS displays the Installed Certificate Information table on the ACS Certificate Setup page.


Note If your CiscoSecure ACS has not already been enrolled with a certificate, you do not see the Installed Certificate Information table. Rather, you see the Install new certificate table. If this is the case, you can proceed to Step5.


Step3 Click Enroll New Certificate .

A confirmation dialog box appears.

Step4 To confirm that you intend to enroll a new certificate, click OK .

The existing CiscoSecure ACS certificate is removed and your Certificate Trust List configuration is erased.

Step5 You can now install the replacement certificate in the same manner as an original certificate

From this doc;

Hope this helps!


Please remember to rate helpful posts.......