TAC-2026-04-gcc-ise-cert-import: GCC ISE Certificate Import Failure

Case Summary

Field	Value
Case ID	TAC-2026-04-gcc-ise-cert-import
Date Opened	2026-04-01
Requestor	Matt Comeione (NE-Systems)
Escalated By	Ed Padilla (NE-Systems)
Client	GCC — Glendale Community College (Stanley)
Status	Partially Resolved — PSN-04 cert reissuance pending
Priority	P2
Category	ISE Certificate Management

Field

Value

Case ID

TAC-2026-04-gcc-ise-cert-import

Date Opened

2026-04-01

Requestor

Matt Comeione (NE-Systems)

Escalated By

Ed Padilla (NE-Systems)

Client

GCC — Glendale Community College (Stanley)

Status

Partially Resolved — PSN-04 cert reissuance pending

Priority

Problem Statement

GCC has a 4-node ISE deployment. One node will not import a certificate. Their Cisco support has lapsed and they are looking at replacements. NE-Systems asked for ISE assistance.

Additionally, the secondary MNT and a PSN are down. CLI password has been lost. Password recovery required before any diagnostics can begin. GCC has VMware vSphere console access to the nodes. Nodes have not been hardened (password recovery is enabled).

An OVA deployment to ESXi is also in progress (GCC handling download).

Information Requested

Sent to Matt on 2026-04-01. Awaiting response:

Certificate type, format, chain completeness
Failing node hostname, role, version (show version)
Service status (show application status ise)
NTP status (show ntp)
Current certs (show certificate application-server)
Exact error message (screenshot)
Context (new cert? expired? recent changes?)
GUI/CLI access to failing node
The cert chain file

Availability

~~2026-04-01: 12:00-12:30 PM (lunch) or after 4:00 PM~~ — superseded, active call in progress
Matt confirmed via email

Timeline

Date	Event
2026-04-01 09:43	Matt Comeione emails NE-Systems team requesting ISE help for GCC/Stanley
2026-04-01 10:00	Ed Padilla forwards to Evan
2026-04-01 11:31	Evan replies — available at 12:00 or after 4:00 PM. Sent information checklist.
2026-04-01	Active call with GCC. Scope expanded: secondary MNT and PSN down, CLI password lost. Password recovery is immediate priority. OVA deployment to ESXi in progress (GCC downloading). Cert import deferred until nodes recovered.
2026-04-01	Deregistered secondary admin node and one PSN from the deployment — nodes did not register properly. Nodes are coming back up. Monitoring services.
2026-04-01	Resolved. Deregistered all nodes except PSN-04. All re-registered nodes synced and functional. PSN-04 deferred — requires certificate reissuance before it can rejoin the deployment. Evan led the call. GCC (Glendale Community College) confirmed working state.

Date

Event

2026-04-01 09:43

Matt Comeione emails NE-Systems team requesting ISE help for GCC/Stanley

2026-04-01 10:00

Ed Padilla forwards to Evan

2026-04-01 11:31

Evan replies — available at 12:00 or after 4:00 PM. Sent information checklist.

2026-04-01

Active call with GCC. Scope expanded: secondary MNT and PSN down, CLI password lost. Password recovery is immediate priority. OVA deployment to ESXi in progress (GCC downloading). Cert import deferred until nodes recovered.

2026-04-01

Deregistered secondary admin node and one PSN from the deployment — nodes did not register properly. Nodes are coming back up. Monitoring services.

2026-04-01

Resolved. Deregistered all nodes except PSN-04. All re-registered nodes synced and functional. PSN-04 deferred — requires certificate reissuance before it can rejoin the deployment. Evan led the call. GCC (Glendale Community College) confirmed working state.