BugZero | Cisco BugID CSCwi79159 - ISE 3.2 patch 4 : deleteCertFromStore:- Failed to ...

OPERATIONAL DEFECT DATABASE

...

BugZero | Cisco BugID CSCwi79159 - ISE 3.2 patch 4 : deleteCertFromStore:- Failed to ...

Cisco - Defect ID: CSCwi79159

ISE 3.2 patch 4 : deleteCertFromStore:- Failed to parse certificate

Cisco - Defect ID: CSCwi79159

ISE 3.2 patch 4 : deleteCertFromStore:- Failed to parse certificate

Last updated on August 27th, 2025

BugZero Risk Score
6.1 Medium

Overall: 6.1

Severity: 6.4

Lifecycle: 9.1

Popularity: 4.6

What is the BugZero Risk Score?

Cisco Integration

Learn more about where this data comes from

Cisco Integration

Learn more

Bug Scrub Advisor

Streamline upgrades with automated vendor bug scrubs

Bug Scrub Advisor

Learn more

BugZero Enterprise

Wish you caught this bug sooner? Get proactive today.

BugZero Enterprise

Learn more

Bug Details

Description

Symptom

Unable to delete any certificate from Administration/ System/ Certificate Management/ Trusted Certificates Internal error. Ask your system administrator to check the logs for more details. /ise-psc.log/ 2024-01-26 06:44:11,491 INFO [admin-http-pool3][[]] cpm.infrastructure.certmgmt.util.CertificateAuthorityUtil -:admin::deleteCertFromStore:- :::-CertFlow-:::- Checking if the selected trust certificate is issuer for any other certificate 2024-01-26 06:44:11,589 ERROR [admin-http-pool3][[]] cpm.infrastructure.certmgmt.util.CertMgmtUtils -:admin::deleteCertFromStore:- Failed to parse certificate. java.security.NoSuchAlgorithmException: no such algorithm: SHA256withECDSA for provider BCFIPS at sun.security.jca.GetInstance.getService(GetInstance.java:101) ~[?:1.8.0_292] 2024-01-26 06:44:11,590 ERROR [admin-http-pool3][[]] admin.caservice.certmgmt.action.TrustedCertificatesAction -:admin::deleteCertFromStore:- java.security.NoSuchAlgorithmException: no such algorithm: SHA256withECDSA for provider BCFIPS com.cisco.cpm.infrastructure.certmgmt.api.CertMgmtException: java.security.NoSuchAlgorithmException: no such algorithm: SHA256withECDSA for provider BCFIPS at com.cisco.cpm.infrastructure.certmgmt.util.CertMgmtUtils.isIssuingCert(CertMgmtUtils.java:792) ~[certmgmt-3.2.0-542.jar:?] ref. CSCwc20000

Conditions

ISE 3.2 patch 4 Imported ECDSA Certificates in Trust Store

Workaround

Export Trusted Certificates via OpenAPI, filter based on signatureAlgorithm (anything containing ECDSA) remove via SQL from UPSTRUSTCERTIFICATE and UPSTRUSTCERTIFICATE_ISEROLES based on ID

Further Problem Description

Change history

2024-10-11 Added: 003.002(000.904)

Top Cisco Defects

9.7Defect ID: CSCuz46500
Fib_mgr process crash due to "not enough memory"
9.7Defect ID: CSCwf08698
Cat9k Crashes Unexpectedly due to a Fault in the 'TLSCLIENT_PROCESS'
9.7Defect ID: CSCwj74769
After [non]pairwise key enabling and reboot, bfd ip and port mismatch on device.
9.7Defect ID: CSCwj73634
Full or partial 9800 configuration loss after HA SSO failover
9.7Defect ID: CSCwi93213
9800 WLC marked "AAA Server Down" after switchover when using key 6 password encryption

Cisco Integration

Learn more about where this data comes from

Cisco Integration

Learn more

Bug Scrub Advisor

Streamline upgrades with automated vendor bug scrubs

Bug Scrub Advisor

Learn more

BugZero Enterprise

Wish you caught this bug sooner? Get proactive today.

BugZero Enterprise

Learn more

Ready to prevent the next vendor outage?

Get a demo

OPERATIONAL DEFECT DATABASE

Cisco - Defect ID: CSCwi79159

ISE 3.2 patch 4 : deleteCertFromStore:- Failed to parse certificate

Cisco - Defect ID: CSCwi79159

ISE 3.2 patch 4 : deleteCertFromStore:- Failed to parse certificate

Last updated on August 27th, 2025

BugZero Risk Score6.1 Medium

Bug Details

Symptom

Conditions

Workaround

Further Problem Description

Links

Top Cisco Defects

Ready to prevent the next vendor outage?

BugZero Risk Score
6.1 Medium