Guest

Preview Tool

Cisco Bug: CSCvh70637 - Git644: /etc/maglev/.pki or the vault is not updated with new kong cert generated after 3-node clust

Last Modified

May 25, 2019

Products (1)

  • Cisco Application Policy Infrastructure Controller Enterprise Module (APIC-EM)

Known Affected Releases

DNAC1.1.1 DNAC1.1.2

Description (partial)

Symptom:
Whenever DNAC1.1.2 default cert changes due to events such as membership change in 3-node cluster or "maglev-config update" is run then applications such as SWIM, WLC Network Assurance and ISE trust fail to work.

Conditions:
A new node should join a 3-node cluster or "maglev-config update" is run so that maglev kong certificate is regenerated.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.