Hi Tim - We just purchased a single cert for our managers - we run them in failover - and a cert for each server - we couldn't afford failover there but would have doubled up like above had we needed to. You should not have to pay for more than the one cert as the second isn't being used unless it's failed over to, then the first one isn't using it!
- Sean ---- Sean Hennessey Networking and Information Security Systems Administrator The University of Portland -----Original Message----- From: Cisco Clean Access Users and Administrators [mailto:[EMAIL PROTECTED] On Behalf Of Riegert, Timothy J. Sent: Monday, April 07, 2008 12:28 PM To: [email protected] Subject: Certificates for Failover Bundles We were planning on using RapidSSL certificates for our CAS and CAM failover bundles, but we noticed the following when we went to order the certificate: "By default, this certificate is licensed for one server. If this certificate will be used on additional servers, please select the total number of servers for which this certificate will be used. The price per each additional server is the same as the price for the the initial server. If you need to install this on more than 100 servers, please contact us." >From what I gather from the documentation, the same certificate is used on both appliances in the failover bundle (based upon service IP). So does this mean that even though only one of the appliances is active at a time, we have to pay twice the price to license the cert? What is everyone else doing for this? Is this just the nature of the beast or are there other popular trusted CA's that you use without this additional cost? Considering the number of appliances that we are deploying, the cost over a few years for both appliances in a bundle will become somewhat prohibitive. Thanks in advance, -Tim
