Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5723
Views
0
Helpful
3
Replies

ASA view user certificates expiry date

Go to solution
o.melnikov
Level 1
Level 1

‎01-30-2012 11:30 PM - edited ‎03-10-2019 06:46 PM

Hello!

There is ASA with remote access VPN and users are authenticated using third party signed certificates (CA is not local in ASA).

When user certificate expires i can see it in syslog messages. For example:

     %ASA-3-717009: Certificate validation failed. Certificate date is out-of-range, serial number: (...)

I would like to know if there is an opportunity to view user's certificate expiry date beforehand, say, 3 days before?

Thank you!

2 people had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Herbert Baerten
Cisco Employee
Cisco Employee

‎02-07-2012 05:19 AM

Hi Oleg,

the user should get a warning when his certificate is about to expire, but on the ASA you cannot detect this, sorry.

hth

Herbert

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Herbert Baerten
Cisco Employee
Cisco Employee

‎02-07-2012 05:19 AM

Hi Oleg,

the user should get a warning when his certificate is about to expire, but on the ASA you cannot detect this, sorry.

hth

Herbert

0 Helpful

Go to solution
o.melnikov
Level 1
Level 1
In response to Herbert Baerten

‎02-20-2012 09:43 PM

Hi Herbert!

Thank you!

0 Helpful

Go to solution
Atri Basu
Cisco Employee
Cisco Employee
In response to o.melnikov

‎07-17-2012 07:59 PM

The following enhancement requests have been filed for this though:

CSCeh73797, CSCsk86689, CSCsy90223. If you have a cisco accounts team you should follow up with them regarding these enhancements.

0 Helpful
Customers Also Viewed These Support Documents