cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
224
Views
0
Helpful
3
Replies

Certificate Enrollment

darreng
Level 1
Level 1
Would someone be kind enough to clarify a minor point for me. If I have an ASA with a FQDN of asa1.mycompany.com and I wish to terminate Anyconnect sessions on it pointing to the DNS entry of sslvpn.mycompany.com. When generating my Identity Cert, does the CN field = the FQDN of the ASA or the VPN etc. I just want to make sure that I generate the certificate request correctly before sending to the CA. Slighly unsure whether it makes a difference. Regards Darren
1 Accepted Solution

Accepted Solutions

If you find this helpful please rate, thanks! :)

View solution in original post

3 Replies 3

Diego Lopez
Level 1
Level 1

Hello

The CN field should be the VPN domain"sslvpn.mycompany.com".

You can follow this documentation to get the CSR, install the certificate and apply it to the proper interface:

http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/107956-renew-ssl.html

Thank you for clarifying. 

Regards

Darren

If you find this helpful please rate, thanks! :)

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: