Cisco Catalyst SD-WAN Certificate Management Guide, Releases 26.x and Later

PDF

Managing certificates in SD-WAN Manager

Want to summarize with AI?

Log in

Describes the information that SD-WAN Manager provides about certificates, and the controls for managing them.


Information and controls for managing certificates in SD-WAN Manager, in Configuration > Certificates.

Information or control

Description

Top bar

On the left are the menu icon, for expanding and collapsing the SD-WAN Manager menu, and the SD-WAN Manager product name. On the right are a number of icons and the user profile drop-down.

Title bar

Includes the title of the screen, Certificates.

WAN Edge List tab

Install the router authorized serial number file on the SD-WAN Control Components in the fabric and manage the serial numbers in the file.

  • Send to Controllers: Send the WAN edge router chassis and serial numbers to the controllers in the network.

  • Validate column: The certificate status can be:

    • Valid (shown in green): Device certificate is valid.

    • Staging (shown in yellow): Device is in the staging state.

    • Invalid (shown in red): Device certificate is not valid.

Controllers tab

Install certificates and download the device serial numbers to the SD-WAN Validator.

  • Send to SD-WAN Validator: Send the controller serial numbers to the SD-WAN Validator.

  • Install Certificate: Install the signed certificates on the controller devices. This button is available only if you select Manual in Administration > Settings > Certificate Signing by Symantec.

  • Export Root Certificate: Display a copy of the root certificate for the controller devices that you can download to a file.

  • Table of controller devices in the overlay network: To re-arrange the columns, drag the column title to the desired position.

  • Certificate status bar: Located at the bottom of the screen, this bar is available only if you select Server Automated in Administration > Settings > Certificate Authorization. It displays the states of the certificate installation process:

    • Device Added

    • Generate CSR

    • Waiting for Certificate

    • Send to Controllers

A green check mark indicates that the step has been completed. A grey check mark indicates that the step has not yet been performed.

Note

Starting from Cisco IOS XE Catalyst SD-WAN Release 17.13.1a, the Controllers tab is renamed as the Control Components tab to stay consistent with Cisco Catalyst SD-WAN rebranding.

Search box

Includes the Search Options drop-down, for a Contains or Match string.

Refresh icon

Click to refresh data in the device table with the most current data.

Export icon

Click to download all data to a file, in CSV format.

From SD-WAN Manager 20.12.1, dates in the exported file use the Unix epoch format.

Show Table Fields icon

Click the icon to display or hide columns from the device table. By default, all columns are displayed.