Question

Update Certificate

  • 23 November 2020
  • 4 replies
  • 79 views

Hi anybody,

I have an external applied radius certificate and the EMC radius certificate is empty.

Is the following procedure all I need to do?

cd /opt/nac/radius/raddb/certs
rm external_server.pemrm external_server.keystore

nacctl restart

What are the risk during this procedure?

 

BR Bernd

 

 


This topic has been closed for comments

4 replies

Userlevel 6
Badge +1

Bernd,

The folder you mention is in the NAC not in the XMC, you are mixing different things and.

Before deleting anything I suggest to describe your request with more details.

 

 

On the other hand, if you do a webview on you access control engine and go to Diagnostics/Certificate Diagnostics you’ll see a detail of the certificates

On the nac, if you type “root@controlengine.chjltn.local:$ openssl x509  -text -in /opt/nac/radius/raddb/certs/external_server.pem” you’ll have the identification of the certificate and you’ll be able to see where it is used.

 

Mig

Hi Mig,

the message was in EMC :

I find a solution I thought “https://extremeportal.force.com/ExtrArticleDetail?n=000006216”. I my case there is no entrance for radius:

So I thougth the resoluion is to do only on nac-server like described obove.

BR Bernd

Userlevel 6
Badge +1

Bernd,

 

What is the output of “root@controlengine.chjltn.local:$ openssl x509  -text -in /opt/nac/radius/raddb/certs/external_server.pem”?

This has to be compared with the diagnostic view of the nac to be sure.

Mig

Hi Mig,

I found all informations, thank you for helping!

BR Bernd