Implementing Cisco Secure Access Solutions (SISAS, legacy) — Question 82

What steps must you perform to deploy a CA-signed identity certificate on an ISE device?

Answer options

• A. 1. Download the CA server certificate and install it on ISE. 2. Generate a signing request and save it as a file. 3. Access the CA server and submit the CA request. 4. Install the issued certificate on the ISE.
• B. 1. Download the CA server certificate and install it on ISE. 2. Generate a signing request and save it as a file. 3. Access the CA server and submit the CSR. 4. Install the issued certificate on the CA server.
• C. 1. Generate a signing request and save it as a file. 2. Download the CA server certificate and install it on ISE. 3. Access the ISE server and submit the CA request. 4. Install the issued certificate on the CA server.
• D. 1. Generate a signing request and save it as a file. 2. Download the CA server certificate and install it on ISE. 3. Access the CA server and submit the CSR.

Correct answer: D

Explanation

Option D is correct because it outlines the necessary steps for deploying a CA-signed identity certificate on an ISE device, including generating a signing request and submitting it to the CA server. The other options are incorrect as they misplace the submission of the CSR and the installation of the issued certificate, either by submitting to the wrong server or installing the certificate inappropriately.