any one can tell me the procedures of signing switch certificate from Microsoft CA. as the configuration of this part is not clear in the configuration guides.
This is because I need to cover the vulnerabilities regarding the switch certificate.
Visit at below support form:
Use the command "crypto pki trustpoint XXX". If that is also not available, you need to change your IOS to one that supports crypto. These have an "k9"in the name.
I created a web certificate from the ca and then I issued crypto pki import TrustPointName from tftp, then creates the trustpoints. then I used this trustpoint in the http by " ip http secure-trustpoint TrustPointName "
There are two typical use-cases for certificates on the switch:
If you don't have one of these use-cases, you typically don't need these certificates.