Wireless Access

 View Only
last person joined: 12 hours ago 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

Odd issue after updating the certificate on conductor

This thread has been viewed 9 times

  • 1.  Odd issue after updating the certificate on conductor

    Posted 10 days ago

    This morning I've updated the certificate on our conductors / controllers and when I run show crypto-local pki serverCert I get the output

    Certificates
    ------------
    Name            Original Filename  Reference Count  Expired
    --------------  -----------------  ---------------  -------
    AOS23NEW        AOS23NEW.p12       0                No
    AOSwild24       aos2024.p12        3                No

    This is what I would expect. Similarly, when I run show web-server profile I get the output

    Web Server Configuration
    ------------------------
    Parameter                                          Value
    ---------                                          -----

    ...
    Switch Certificate                                 AOSwild24
    Captive Portal Certificate                         AOSwild24
    IDP Certificate                                    AOSwild24

    ...

    All good so far.

    When I run the command no crypto-local pki servercert AOS23NEW, I am told:

    [mm] (config) #no crypto-local pki serverCert AOS23NEW
    Cert 'AOS23NEW' in use by 3 ref

    Very confused as to why this may be the case! Has anyone else seen this? 



  • 2.  RE: Odd issue after updating the certificate on conductor

    EMPLOYEE
    Posted 10 days ago

    Double check that configuration is in sync with no failures for all devices.  I've seen odd behaviors before where the order of operations ends up in a bad state.  Fix required adding the certificate back with the same names to overwrite and then carefully removing everything one step at a time.



    ------------------------------
    Carson Hulcher, ACEX#110
    ------------------------------

    Original Message


  • 3.  RE: Odd issue after updating the certificate on conductor

    Posted 7 days ago

    Annoyingly, everything was fine. In the end, before re-applying the certificate I did the old "switch it off and on again" routine (my usual first line fix) and it fixed the issue. 

    Thanks for getting back to me! :-)


    Original Message