Cisco NAC3350-PROF-K9 Hardware Installation Guide - Page 87
Important Notes for SSL Certificates, For further details on the CAM
View all Cisco NAC3350-PROF-K9 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 87 highlights
Chapter 3 Installing the Clean Access Manager and Clean Access Server Installing the Clean Access Manager Step 14 To log out of the web console, either click the administrator session Logout button, at the top right-hand corner of the console, or simply close the browser. Important Notes for SSL Certificates 1. You must generate the temporary SSL certificate during CAM installation or you will not be able to access your CAM as an end user. 2. After CAM and CAS installation, make sure to synchronize the time on the CAM and CAS via the web console interface before regenerating a temporary certificate on which a Certificate Signing Request (CSR) will be based. 3. In order to establish the initial secure communication channel between a CAM and CAS, you must import the root certificate from each appliance into the other appliance's trusted store so that the CAM can trust the CAS's certificate and vice-versa. 4. Before deploying the CAM in a production environment, Cisco strongly recommends acquiring a trusted certificate from a third-party Certificate Authority to replace the temporary certificate (in order to avoid the security warning that is displayed to the web user during admin login). For further details on the CAM, see the "Set System Time" and "Manage CAM SSL Certificates" sections of the Cisco NAC Appliance - Clean Access Manager Configuration Guide, Release 4.8(3). For details on the CAS, see the Cisco NAC Appliance - Clean Access Server Configuration Guide, Release 4.8(3). Note If your previous deployment uses a chain of SSL certificates that is incomplete, incorrect, or out of order, CAM/CAS communication may fail after upgrade to release 4.8(x). You must correct your certificate chain to successfully upgrade to release 4.8(x). For details on how to fix certificate errors on the CAM/CAS after upgrade to release 4.8(x), refer to the How to Fix Certificate Errors on the CAM/CAS After Upgrade Troubleshooting Tech Note. OL-20326-01 Cisco NAC Appliance Hardware Installation Guide 3-17