Wireless Access

 View Only
last person joined: 5 hours ago 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

Odd issue after updating the certificate on conductor

This thread has been viewed 9 times

  • 1.  Odd issue after updating the certificate on conductor

    Posted 3 days ago

    This morning I've updated the certificate on our conductors / controllers and when I run show crypto-local pki serverCert I get the output

    Certificates
    ------------
    Name            Original Filename  Reference Count  Expired
    --------------  -----------------  ---------------  -------
    AOS23NEW        AOS23NEW.p12       0                No
    AOSwild24       aos2024.p12        3                No

    This is what I would expect. Similarly, when I run show web-server profile I get the output

    Web Server Configuration
    ------------------------
    Parameter                                          Value
    ---------                                          -----

    ...
    Switch Certificate                                 AOSwild24
    Captive Portal Certificate                         AOSwild24
    IDP Certificate                                    AOSwild24

    ...

    All good so far.

    When I run the command no crypto-local pki servercert AOS23NEW, I am told:

    [mm] (config) #no crypto-local pki serverCert AOS23NEW
    Cert 'AOS23NEW' in use by 3 ref

    Very confused as to why this may be the case! Has anyone else seen this? 



  • 2.  RE: Odd issue after updating the certificate on conductor

    EMPLOYEE
    Posted 3 days ago

    Double check that configuration is in sync with no failures for all devices.  I've seen odd behaviors before where the order of operations ends up in a bad state.  Fix required adding the certificate back with the same names to overwrite and then carefully removing everything one step at a time.



    ------------------------------
    Carson Hulcher, ACEX#110
    ------------------------------

    Original Message


  • 3.  RE: Odd issue after updating the certificate on conductor

    Posted 4 hours ago

    Annoyingly, everything was fine. In the end, before re-applying the certificate I did the old "switch it off and on again" routine (my usual first line fix) and it fixed the issue. 

    Thanks for getting back to me! :-)


    Original Message