09-19-2023 03:00 PM
Hi,
We have been receiving this error on our C9800-CL controller for some time now and not sure what it requires.
%PKI-2-CERT_RENEW_FAIL: Certificate renewal failed for trustpoint sdn-network-infra-iwan Reason : Failed to get ID certificate from CA server
Does anyone know what this might be related to. Currently our infrastructure and controller does not have any issues and this controller is managed by DNA Center.
Sajid
09-19-2023 11:52 PM
- Note sure if the feature is supported on 9800 controller ; in that context start with a checkup of the controller configuration with the CLI command show tech wireless ; feed the output into : https://cway.cisco.com/wireless-config-analyzer/
Some of these commands may provide insights :
show crypto pki certificates
show crypto pki timers
show crypto pki server
In the running-config , you can also enable : debug pki transaction and check logs
Also check current software version ; compare too : https://www.cisco.com/c/en/us/support/docs/wireless/catalyst-9800-series-wireless-controllers/214749-tac-recommended-ios-xe-builds-for-wirele.html
M.
09-27-2023 09:12 AM
Same issue but our 9800-L is not managed by DNA
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide