Interesting. Is it CCA saying that the CSR was previously used, or the 
actual CA saying that?

I'm pretty sure I've done it on a Microsoft CA before, but have never 
tried it with an external CA. Maybe the CSR is the same as it was last 
time you asked for a cert from them and so they reject it.

Nate

Hennessey, Sean wrote:
> Hi Nate -
>
> When I've tried to generate a new CSR I've gotten an error saying that
> the request was previously used. I'm pretty new to the Cert game, so if
> you can point me in the right direction I'd really appreciate it. I'm
> pretty sure that my getting it to work properly two years ago, when we
> implemented NAC originally, was a fluke! :)
>
> - Sean
>
> ----
>
> Sean Hennessey
>
> Networking and Information Security Systems Administrator
>
> The University of Portland
>
>
> -----Original Message-----
> From: Cisco Clean Access Users and Administrators
> [mailto:[log in to unmask]] On Behalf Of Nathaniel Austin
> Sent: Wednesday, July 09, 2008 11:47 AM
> To: [log in to unmask]
> Subject: Re: Cert Question
>
> Hey Sean,
>
> If you generate a temp cert, then yes it will erase the current cert you
>
> have. Why do you need to generate another temp cert though? As long as 
> the hostname is correct on the current cert, you can generate a new CSR 
> based off that cert.
>
> Nate
>