03-10-2018 11:33 PM - edited 03-08-2019 02:12 PM
Hello Dears
any one can tell me the procedures of signing switch certificate from Microsoft CA. as the configuration of this part is not clear in the configuration guides.
This is because I need to cover the vulnerabilities regarding the switch certificate.
03-10-2018 11:41 PM
Hi,
Visit at below support form:
https://supportforums.cisco.com/t5/vpn/installing-ssl-certificate-s-on-ios/td-p/1527611
Regards,
Deepak Kumar
03-11-2018 12:55 AM
the command "Crypto ca trustpoint " is not valid
03-11-2018 03:48 PM
Use the command "crypto pki trustpoint XXX". If that is also not available, you need to change your IOS to one that supports crypto. These have an "k9"in the name.
03-22-2018 07:03 AM
I created a web certificate from the ca and then I issued crypto pki import TrustPointName from tftp, then creates the trustpoints. then I used this trustpoint in the http by " ip http secure-trustpoint TrustPointName "
03-22-2018 09:20 AM
Hello Guys,
I see these commands on my switches too, whats the purpose of issuing certificate on switches.
I never issue certificate to switch.
Thanks,
Lovejit
03-22-2018 09:42 AM
There are two typical use-cases for certificates on the switch:
If you don't have one of these use-cases, you typically don't need these certificates.
03-22-2018 10:28 AM
Hello Karsten,
I thing GUI management we can do through CCP as well, Do we need certificate for that too?
@Karsten Iwen So after deploying certificate and doing Web Authentication it will work only for Domain Users, or it will work for local users too?
Thanks,
Lovejit
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide