Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1670
Views
0
Helpful
1
Replies

AIP-SSM-10 Module for Cisco ASA 5510

sal.mobin
Level 1
Level 1

‎07-06-2012 01:10 PM - edited ‎03-11-2019 04:27 PM

  Hi,

How can I update the expired certificate in AIP-SSM-10 Module using CLI or ASDM.....Here;s the output from the device....and also is there a way I can generate some daily or weekly reports in a graphs.

Thanks,

edge-s2# show version
Application Partition:

Cisco Intrusion Prevention System, Version 7.0(2)E4

Host:
    Realm Keys          key1.0
Signature Definition:
Signature Update      S613.0                   2011-12-16
OS Version:             2.4.30-IDS-smp-bigphys
Platform:                  ASA-SSM-10
Serial Number:          XXXXXXXXXX

Licensed, expires:      28-Jul-2012 UTC
Sensor up-time is 312 days.
Using 670720000 out of 1032495104 bytes of available memory (64% usage)
system is using 17.4M out of 38.5M bytes of available disk space (45% usage)
application-data is using 45.4M out of 166.8M bytes of available disk space (29% usage)
boot is using 41.6M out of 68.6M bytes of available disk space (64% usage)
application-log is using 123.5M out of 513.0M bytes of available disk space (24% usage)


MainApp            B-BEAU_2009_OCT_15_08_07_7_0_1_111   (Ipsbuild)   2009-10-15T08:09:06-0500   Running
AnalysisEngine     BE-BEAU_E4_2010_MAR_25_02_09_7_0_2   (Ipsbuild)   2010-03-25T02:11:05-0500   Running
CollaborationApp   B-BEAU_2009_OCT_15_08_07_7_0_1_111   (Ipsbuild)   2009-10-15T08:09:06-0500   Running
CLI                B-BEAU_2009_OCT_15_08_07_7_0_1_111   (Ipsbuild)   2009-10-15T08:09:06-0500

Upgrade History:

* IPS-sig-S555-req-E4       18:48:23 UTC Wed Mar 30 2011
  IPS-sig-S613-req-E4.pkg   22:30:02 UTC Wed Dec 21 2011

Recovery Partition Version 1.1 - 7.0(2)E4

Host Certificate Valid from: 28-Jul-2011 to 28-Jul-2012

edge-s2#

Labels:
0 Helpful
1 Reply 1

Karsten Iwen
VIP
VIP

‎07-06-2012 03:27 PM

In IDM, the certificate can be renewed unter Configuration -> Sensor management -> Certificates -> Server Certificate.

On the CLI the command is "tls generate-key".

Sadly, the sensor doesn't support to be enrolled in an enterprise-PKI ... :-(

For your reports, look into the IME (IPS manager Express). There are some predefined reports and you can customize your own.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card