Describes the Control Components Certificate Management Workflow, a step-by-step workflow that updates the authentication certificates for SD-WAN Control Components.
The Control Components Certificate Management Workflow in Cisco SD-WAN Manager is a step-by-step interactive procedure (called a workflow) that updates the authentication certificates for SD-WAN Control Components.
Cisco Catalyst SD-WAN uses authentication certificates to authenticate components when establishing control connections between SD-WAN Control Components, or between SD-WAN Control Components and edge devices. SD-WAN Manager can manage the certificates installed on components in the network:
-
SD-WAN Control Components
-
WAN edge devices
Certificates expire and require renewal. Use this SD-WAN Manager workflow to renew the certificates for SD-WAN Control Components.
Expired certificates
From SD-WAN Control Components 20.18.1, control connections between SD-WAN Control Components and edge devices remain operational even when the certificates on SD-WAN Control Components have expired. Control connections may also successfully re-establish after being manually cleared, including connections to SD-WAN Controllers with expired certificates. This maintains the functionality of the fabric.