Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
781
Views
0
Helpful
1
Replies

https on pix and asa - cert expired

keller.oliver
Level 3
Level 3

‎09-14-2010 08:34 AM - edited ‎03-11-2019 11:40 AM

The https certificate of one of our pix firewalls has expired, so I wondered how to refresh it.

I tried everything from generating new key pairs to zeroizing every key I could grab and generate new ones, disabling and enabling the http server in between, so in theory it should start with a new cert.

however, deleting installed certs and clearing the cache of the browser didn´t help much, all the client sees is the expired cert, which I suspect to be the cert the pix is still delivering.

can someone share some light on how the https demon is actually related to the key pairs and what you need to do in order to refresh an expired cert on a pix 7.05 ?

tia,

oliver

Labels:
0 Helpful
1 Reply 1

Marcin Latosiewicz
Cisco Employee
Cisco Employee

‎09-14-2010 09:26 AM

Oliver,

7.0.5 is ancient 🙂

I believe the exact check that is done is if certificate exists.

care to share your "show run crypto ca trust" "show cry ca cert" outputs?

Marcin

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card