Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1847
Views
0
Helpful
2
Replies

ACAS scan on cisco prime 3.6 Plugin: 51192 SSL Certificate Cannot Be Trusted Medium

Eric R. Jones
Level 4
Level 4

‎08-25-2019 03:45 PM

Our IA department was doing scans and they got a hit on a plugin.

Our SSL Certificate is a third party trusted CA and until now we have had no issues.

Has anyone had this finding appear?

 

ej

Labels:
0 Helpful
2 Replies 2

marce1000
VIP
VIP

‎08-26-2019 12:20 AM

 

 - This means that the Prime host has an untrusted SSL certificate, indicating  the certificate is either expired, self-signed, or signed by an 'unknown' authority.  The output of plugin 51192 will include the certificate details,  which you might examine and or forward to CISCO TAC.

 M.



-- ' 'Good body every evening' ' this sentence was once spotted on a logo at the entrance of a Weight Watchers Club !
0 Helpful

Eric R. Jones
Level 4
Level 4
In response to marce1000

‎09-25-2019 07:23 PM

Hello, It turns out the device wasn't the issue at all. I did more sleuthing and on the previous ACAS scans and it wasn't a problem until the new signatures for ACAS came out and the team didn't update them. So it's a false positive right now.

 

ej

0 Helpful
Customers Also Viewed These Support Documents