11-28-2018 01:40 AM
Hi all,
I'm having problems installing a CA cert on the ASA. The root cert installs fine, but the intermediate will not. Is there a character length limit for the CRL within the cert?
Debugging we get this output,
CERT-C: E ../cert-c/source/certobj.c(1516) : Error #705h
CERT-C: E ../cert-c/source/certobj.c(1528) : Error #72ah
CERT-C: E ../cert-c/source/certobj.c(874) : Error #72ah
CRYPTO_PKI: can not set ca cert object (0x72a)
CRYPTO_PKI: status = 65535: failed to process RA certificate
Any help appreciated.
11-28-2018 10:58 AM
Are you trying to add it into the same trustpoint as the Root? This won't be possible as a trustpoint can only hold 1 CA cert (Root or intermediate) . Try adding this to another trustpoint if you have not done that already.
Also, which CA is this? Can you paste the steps that you took to install the intermediate cert?
11-28-2018 01:34 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide