Hi Guys,
Really need your help.
I generated a CSR using my OpenSSL tool outside the ASA, this CSR is SHA256withRSAencryption as shown below,
Attributes:
challengePassword : <output-omitted>
Requested Extensions:
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
<output-omitted>
Now, I got the certificate already and I tried to bundle it (cert key, identity cert, ica cert, and rca cert) to pfx then convert it to base64 (p12 or pem), I followed this procedure below:
1. http://www.labminutes.com/blog/public/2014/06/wildcard-certificate-generation-asa
2. https://www.cisco.com/c/en/us/support/docs/security-vpn/public-key-infrastructure-pki/200339-Configure-ASA-SSL-Digital-Certificate-I.html#anc7
Now I got the base64 format, when I am trying to import it either via ASDM or CLI, I always got an error stating "ERROR: Import PKCS12 operation failed". I tried to debug but nothing is showing significant output.
Anybody encountered this issue? Does ASA 9.14.x.x only supports SHA1 RSA signature?
Thanks for the help.