Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2142
Views
0
Helpful
1
Replies

ASA/IPS and IPS Manager Express

Go to solution
ddevecka
Level 1
Level 1

‎05-13-2008 12:34 PM - edited ‎03-10-2019 04:06 AM

I am trying to add my sensor to the IPS Manager Express but I keep the following error. IOException when try to get certificate:java.security.cert.CertificationExpiredException: notafter Sat May 10 **** 2008.

I am sure this is simple but can find how to fix this.

Regards,

D

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
marcabal
Cisco Employee
Cisco Employee

‎05-13-2008 01:18 PM

This usually means that the SSL/TLS certificate on your sensor's web server expired on May 10th, 2008.

This is very common for sensors that have been active for mroe than a year. When a sensor's certificate is generated it is usually valid for only a year or so.

You just need to create a new SSL/TLS certificate for your sensor.

Login to your sensor and execute "tls generate-key"

http://www.cisco.com/en/US/partner/docs/security/ips/6.1/command/reference/crCmds.html#wp504369

But keep in mind that once you do this you will need to ensure you go to any other management systems that connect to your sensor and ensure that the management system pulls down and accepts that new certificate (this often requires you push some type of accept button for the new certificate).

View solution in original post

0 Helpful
1 Reply 1

Go to solution
marcabal
Cisco Employee
Cisco Employee

‎05-13-2008 01:18 PM

This usually means that the SSL/TLS certificate on your sensor's web server expired on May 10th, 2008.

This is very common for sensors that have been active for mroe than a year. When a sensor's certificate is generated it is usually valid for only a year or so.

You just need to create a new SSL/TLS certificate for your sensor.

Login to your sensor and execute "tls generate-key"

http://www.cisco.com/en/US/partner/docs/security/ips/6.1/command/reference/crCmds.html#wp504369

But keep in mind that once you do this you will need to ensure you go to any other management systems that connect to your sensor and ensure that the management system pulls down and accepts that new certificate (this often requires you push some type of accept button for the new certificate).

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card