Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1976
Views
0
Helpful
1
Replies

Cisco Secure ACS 3.1 SSL CSR

grshaw
Level 1
Level 1

‎01-22-2003 04:47 AM - edited ‎03-10-2019 07:07 AM

I can successfully install a certificate in ACS if I use openssl to generate the CSR. However, I would like to generate this from within ACS 3.1.1 (for documentation purposes). When I use the ACS management page to generate the CSR and then paste this into verisign, verisign reports that the OU etc is missing (fair comment). Cisco's documentation reports the CSR from ACS can be used to generate a certificate on any CA. How if the ACS generated CSR is missing half the required information..

Labels:
0 Helpful
1 Reply 1

grshaw
Level 1
Level 1

‎01-23-2003 05:13 AM

To answer my own question.

To generate a valid CSR (for use with verisign) and key file.

1) Use openssl under cygwin if you don't have a *nix box.

2) Use the novell tool gwcsrgen2.exe (albeit with 512 bits)

It appears that CSACS 3.1 csr function does not work with verisign since verisign WWW site states that if you are requesting a cert from outside the US, the CSR must contain the ISO country code etc!!

Graham

0 Helpful
Customers Also Viewed These Support Documents