Overview
This section describes the Cisco Prime Infrastructure & Cisco DNA Center integration issue that occurs due to Trust-on-first-use (TOFU) certificate mismatch after a new Certificate Signing Request (CSR) is generated from Cisco DNA Center, how to troubleshoot and resolve it.
TOFU certificate received from the Cisco DNA Center is trusted when the connection is made for the first time. If the Cisco DNA Center sends a different certificate for any sub-sequent connection, the connection will be rejected, which causes integration failure between Prime Infrastructure server and Cisco DNA Center.
The certificate on the remote host (Cisco DNA Center) to which Cisco Prime Infrastructure is connected can change if a new certificate is generated or if the server is deployed again on the VM host (Cisco DNA Center).