Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
294
Views
0
Helpful
1
Replies

ASA Upgrade LOCAL_CA_SERVER issue

Chi Fai Leung
Level 1
Level 1

‎04-08-2014 07:23 AM - edited ‎03-11-2019 09:02 PM

Hi All Security Experts,

 

I upgraded a ASA firewall using the 8.6(1) version with the LOCAL_CA_SERVER, which is for the VPN clients, e.g. one time auth cert deployment, revoking.

 

Unfortunately, I have to upgrade the version to 9.1 or above, because I hit a bug. I discovered the LOCAL_CA_SERVER of the ASA is working, but the clients' cert. will be untrusted and the certed users will have to enter the username & password again to get the cert.

 

Why need to do that? I checked the trust points, the local certs, the db on local CA server .... all is matched as the b4 version. Why the b4 deployed clients' cert. will be untrusted? Any idea on that? Thanks!

Labels:
0 Helpful
1 Reply 1

Chi Fai Leung
Level 1
Level 1

‎04-09-2014 04:30 PM

Is it the client cert. trust check the ASA version?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card