Cisco Bug: CSCvv91834 - CSM is not accepting PKI Enrollment type as "None"
Oct 05, 2020
- Cisco Security Manager
Known Affected Releases
Symptom: As per the current implementation, CSM is accepting the PKI with enrollment type either "Terminal" or "URL" when assigned the same tunnel-group (through SAML). When selecting enrollment type "None" and pushing changes, we see the following errors: "Identity Provider and Service Provider Trustpoints in SAML. Identity Provider should have enrollment Type as 'URL'" On second push you may see: ?ERROR: Trustpoint enrollment configuration cannot be changed for an authenticated trust point.? Conditions: Occurs when selecting PKI Enrollment type as "None"
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases