Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
989
Views
0
Helpful
2
Replies

Certifcates onto Cisco Cat 9500

geoff_70
Level 1
Level 1

‎02-20-2022 09:04 PM

Hello, I am trying to install a certificate onto a Cisco C9500-24Y4C running IOS-XE 17.3.lr

I have copied the file to flash, and installed it successfully using

crypto pki import <trustpointname> pkcs12 bootflash:<certname> password <password> <enter>

This works. When I browse to the ip address, which is included in the cert alternate details, along with it's DNS name, I get an error and I have to
add an exception in the browser to let me in. I am using a corporate Windows Certificate server setup correctly by another team, I export the cert, copy to flash and install
it. When I look at certificate details I also see the following: The issuer of this certificate could not be found.

I am not very familiar with PKI or certs however, I am logged into a server close to the datacentre and I am using Firefox to navigate to 192.168.x.x
after some research I am thinking an issue is the Firefox browser (or any browser) not trusting this security certificate. I need some other
cert installed in the browser I think?

Any help would be appreciated.

Cheers,

Geoff

Labels:
0 Helpful
2 Replies 2

marce1000
VIP
VIP

‎02-21-2022 12:01 AM

 

                 >... I get an error

  - What is the error that you get ?

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

Georg Pauwen
VIP
VIP

‎02-21-2022 12:18 AM

Hello,

 

not sure if this causes any other security issues within your network, but you could disable 'Certificate Validation' in Firefox, forcing it to accept all certificates:

 

https://smallbusiness.chron.com/disable-firefox-rejecting-certificates-59249.html

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card