Cisco Catalyst SD-WAN Certificate Management Guide, Releases 26.x and Later

PDF

Control Components Certificate Management workflow

Want to summarize with AI?

Log in

Describes the Control Components Certificate Management Workflow, a step-by-step workflow that updates the authentication certificates for SD-WAN Control Components.


The Control Components Certificate Management Workflow in Cisco SD-WAN Manager is a step-by-step interactive procedure (called a workflow) that updates the authentication certificates for SD-WAN Control Components.

Cisco Catalyst SD-WAN uses authentication certificates to authenticate components when establishing control connections between SD-WAN Control Components, or between SD-WAN Control Components and edge devices. SD-WAN Manager can manage the certificates installed on components in the network:

  • SD-WAN Control Components

  • WAN edge devices

Certificates expire and require renewal. Use this SD-WAN Manager workflow to renew the certificates for SD-WAN Control Components.

Expired certificates

From SD-WAN Control Components 20.18.1, control connections between SD-WAN Control Components and edge devices remain operational even when the certificates on SD-WAN Control Components have expired. Control connections may also successfully re-establish after being manually cleared, including connections to SD-WAN Controllers with expired certificates. This maintains the functionality of the fabric.


Supported environments for the Control Components Certificate Management workflow

Describes which Cisco Catalyst SD-WAN environments support this feature.

The workflow applies to Cisco Catalyst SD-WAN environments in which you manage the SD-WAN Control Components.


Supported components for the Control Components Certificate Management workflow

Describes which SD-WAN Control Components support this feature.

     
  • Cisco SD-WAN Manager

  • Cisco SD-WAN Controller

  • Cisco SD-WAN Validator