Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
12706
Views
0
Helpful
3
Replies

Cannot download updates: peer certificate cannot be authenticated

Colin Higgins
Level 2
Level 2

‎11-21-2018 06:35 AM - edited ‎03-12-2019 07:06 AM

I have a FMC 1500 that I am trying to update to 6.2.3.7

 

The automatic updates seemed to have stopped, and when I try to manually download in system-->updates I get the error:

 

"download updates failed: Peer certificate cannot be authenticated with known CA certificates"

 

If I go to the https certificate within local configuration, I see that it is one we installed (a wildcard), and it is expired. However, it has been expired since 2015 and I have done many updates since then, so I'm not sure that is the issue

 

Has anyone seen this? What is wrong?

4 people had this problem
Labels:
0 Helpful
3 Replies 3

NeerajS
Level 1
Level 1

‎11-21-2018 07:08 AM

I have an ASA running firepower 6.2.3.7 already. When i do a VRT rule update or VBD update, i am also getting the same error.
0 Helpful

Colin Higgins
Level 2
Level 2
In response to NeerajS

‎11-21-2018 08:23 AM

So I managed to fix it, but I'm not sure what the issue was

 

The FMC was pointed to an internal AD DNS server when it was getting the error. I switched the DNS to 8.8.8.8 in the FMC, and it immediately corrected the issue. I am looking at the AD server now to see what happened.

0 Helpful

NeerajS
Level 1
Level 1
In response to Colin Higgins

‎11-21-2018 08:33 AM

Hi Colin, That helped. Thanks.
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card