Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1440
Views
0
Helpful
2
Replies

C9800 WLC PKI Cert Renew Error

sajidabbas
Level 1
Level 1

‎09-19-2023 03:00 PM

Hi,

We have been receiving this error on our C9800-CL controller for some time now and not sure what it requires. 

%PKI-2-CERT_RENEW_FAIL: Certificate renewal failed for trustpoint sdn-network-infra-iwan Reason : Failed to get ID certificate from CA server

Does anyone know what this might be related to. Currently our infrastructure and controller does not have any issues and this controller is managed by DNA Center. 

Sajid

3 people had this problem
Labels:
0 Helpful
2 Replies 2

marce1000
VIP
VIP

‎09-19-2023 11:52 PM

 

 - Note sure if the feature is supported on 9800 controller ; in that context start with a checkup of the controller configuration with the CLI command show tech wireless  ; feed the output into :  https://cway.cisco.com/wireless-config-analyzer/

   Some of these commands may provide insights :
           show crypto pki certificates
             show crypto pki timers
             show crypto pki server

   In the running-config , you can also enable : debug pki transaction  and check logs

   Also check current software version ; compare too : https://www.cisco.com/c/en/us/support/docs/wireless/catalyst-9800-series-wireless-controllers/214749-tac-recommended-ios-xe-builds-for-wirele.html

 M.


               



-- ' 'Good body every evening' ' this sentence was once spotted on a logo at the entrance of a Weight Watchers Club !
0 Helpful

lrob5
Level 1
Level 1

‎09-27-2023 09:12 AM

Same issue but our 9800-L is not managed by DNA

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card