Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
748
Views
0
Helpful
1
Replies

ASA 5555 Certificate Renewal when VPN phones are not registered

Teresa Primrose
Level 1
Level 1

‎04-29-2015 12:41 PM - edited ‎03-17-2019 02:51 AM

1. Can new certificates be installed before the original certificate expires and have dual certificates loaded?

2. It is impractical to ensure phones are connected during the certificate replacement process therefore if 1.can be performed, will IP VPN phones when theynext register pick up the replacement certificate.

Labels:
0 Helpful
1 Reply 1

matthewik.lee
Level 1
Level 1

‎05-12-2015 07:09 PM

Hi,

http://www.cisco.com/c/en/us/support/docs/security/anyconnect-secure-mobility-client/116162-trouble-anyconnect-vpn-phone-00.html#anc31

Renewal of the ASA SSL Certificate

If you have a functional AnyConnect VPN phone setup but your ASA SSL certificate is about to expire, you do not need to bring all IP phones to the Main Site in order to inject the new SSL certificates to the phone; you can add the new certificates while the VPN is connected.

 

Hope it helps. Matthew

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents