Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1903
Views
0
Helpful
2
Replies

Trusted Certificate on FXOS Chassis Manager

What_The_Hex
Level 1
Level 1

‎12-04-2019 01:45 AM - edited ‎02-21-2020 09:44 AM

Hello All,

I have been working on establishing a certificate between my firepower device and my Windows Server Certificate Authority and have had no such luck.

 

I have followed the below link

https://www.cisco.com/c/en/us/support/docs/security/firepower-4110-security-appliance/200525-Install-a-Trusted-Certificate-for-Firepo.html

 

On the CLI of the firepower device, it doesn't seem to like the certificate chain from the Certificate Authority. It is in BASE 64 format and comes straight from the CA certsrv page.

 

Error Message

Error: Update failed: [failed to verify certificate chain, error: Failed to split certificate chain]

 

I have the correct I.P, DNS, country, organisation, etc information to generate the key. I just can't get past the above step as i'm getting an error.

 

Please help

2 people had this problem
0 Helpful
2 Replies 2

nspasov
Cisco Employee
Cisco Employee

‎12-04-2019 10:21 PM

A couple of questions:

  • What version of FXOS are you running?
  • How many tier is your PKI deployment?
  • Have you tried to import the certificates individually (root, intermediate, server) instead of the chain?

Thank you for rating helpful posts!

 

Thank you for rating helpful posts!
0 Helpful

Athees_M
Level 1
Level 1

‎05-28-2024 04:04 AM

I have tried to import individually not working. import all certs in single go gives error "Failed to verify X509 V3 CA in certificate chain level 0"

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card