Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
486
Views
0
Helpful
1
Replies

Cisco Security Manager 3.2.1 Sp1 and Public Key Infrastructure

Maxim Zimovets
Level 1
Level 1

‎06-02-2009 01:00 AM - edited ‎03-09-2019 10:20 PM

Hi, all!

Recently I created configuration on PIX (FOS 7.2.4) with Cisco Security Manager 3.2.1 Sp1 to allow to work with certificate-based authentication of VPN connections. CSM created necessary commands (and unfortunately many necessary commands left unsupported too). But every time I upload new configuration (even with untouched PKI configuration) CSM adds following command - "crypto ca enroll CA-NAME noconfirm".

Right now I created FlexConfig which just do "no crypto ca....". And it works. But is there more clean solution? Why do I need to enroll every deployment?

Wait for answers.

With best regards

Maxim

Labels:
0 Helpful
1 Reply 1

k.abillama
Level 1
Level 1

‎05-26-2010 01:00 AM

Hello,

I'm having the same problem for one of our customers! but flexconfig didn't work!

Can you please be more specific what exactly you did! Flex config doens't remove generated command it's adding the no crypto ca enroll 'trustpoint name' after the generated crypto ca enroll 'trustpoint name'

I've been also looking for related bugs but didn't find any!

Regards

0 Helpful
Customers Also Viewed These Support Documents