Digicert have announced that all certificates issued (including all public CAs) after May 2026 will not support mTLS authentication:

https://knowledge.digicert.com/alerts/sunsetting-client-authentication-eku-from-digicert-public-tls-certificates

Any impact on NAC & NES servers with these certificate changes? 

Nolio 6.8, 6.9

Nolio seems to be affected by this change.

We will consider modifications in the product for the future versions, but meanwhile you have below options :

• refrain from replacing the current certs unless they are really expired,
• check with DigiCert if mTLS can be retained under some special conditions (from DigiCert web: "DigiCert has excellent options available for our customers and partners who require the client authentication EKU beyond May 1, 2026"),
• as a workaround - Disable the secure communication mode for agents until a permanent solution is found/implemented