Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1456
Views
0
Helpful
2
Replies

Cisco asa 5506 scan shows ssl certificate is untrusted

KEN COUSINO JR.
Level 1
Level 1

‎01-15-2020 10:34 AM

I purchased a new ssl cert for my Cisco ASA 5506.  I installed it and there was an exterior scan run against it.  The scan failed. 

 

Here is the error:

SSL certificate is untrusted
 
How do I resolve these error?
Any help is appreciated.
Labels:
0 Helpful
2 Replies 2

balaji.bandi
Hall of Fame
Hall of Fame

‎01-15-2020 11:16 AM

Certificate always associated with FQDN, how are you scanning against with domain name  ? or IP address?

 

have you mapped the certificated correctly and right interface?

 

here is the information :

 

https://community.cisco.com/t5/security-documents/asa-ssl-vpn-certificate-authentication-per-tunnel-group/ta-p/3123868

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

KEN COUSINO JR.
Level 1
Level 1
In response to balaji.bandi

‎01-15-2020 11:56 AM

The certificate is based on the FQDN as you said but they are scanning the external IP address.  Also, the cert is applied on outside and inside interfaces.  

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card