Cisco Bug: CSCvt89098 - ISE does not reattempt wildcard replication for failed nodes
Jul 13, 2020
- Cisco Identity Services Engine
Known Affected Releases
Symptom: In a number of different cases and scenarios, wildcard replication can fail for only a subset of the nodes in an ISE deployment. An impactful use-case that come to mind where this can be problematic: The existing wildcard is replacing an old wildcard. Nodes that succeed will have the new wildcard, while nodes that fail have to the old wildcard. If this certificate is in use for the admin role, simply re-uploading the certificate and having it replicate to all nodes again is a time-consuming and service impactful for customers. Conditions: Wildcard certificate requires that the certificate is replicated to ALL nodes.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases