08-24-2015 07:21 AM
n00b questions.
I have to renew my identity SSL certificate soon on my Cisco ASA 5505. Will I have to renew all my client certificates on their devices so they can establish a vpn tunnel?
Solved! Go to Solution.
08-25-2015 12:35 AM
Hi dsartoros,
If you are having a self signed identity certificate (locally generated) renewed then you will need to upload that certificate on the clients so that they can connect without getting "server untrusted certificate error".
If you are renewing a certificate issued by a 3rd party CA (sending CSR to CA and then getting certificate) then you won't need to make changes on the client as they already trust the root CA who is issuing the certificate in the first place.
Regards,
Dinesh Moudgil
P.S. Please rate helpful posts.
08-25-2015 12:35 AM
Hi dsartoros,
If you are having a self signed identity certificate (locally generated) renewed then you will need to upload that certificate on the clients so that they can connect without getting "server untrusted certificate error".
If you are renewing a certificate issued by a 3rd party CA (sending CSR to CA and then getting certificate) then you won't need to make changes on the client as they already trust the root CA who is issuing the certificate in the first place.
Regards,
Dinesh Moudgil
P.S. Please rate helpful posts.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide