I have set up a Local Certificate Authortiy Server on my ASA. All went fine till the point when I want to login with a browser to create a user certificate.
It seems that the internal webserver from the ASA does not find the login page (HTTP Error 404) (logon.html):
Does anyone have any ideas what this problem could be?
Why don't you enroll via ASDM?
Michael Please rate all helpful posts
how can I?
are you using a PKI system (SCEP) or an ASA self-signed cert?
anyways, both could be found in ASDM:
Configuration > Device Management > Certificate Management > Identity Certificates
As I correctly understand you have made the ASA as local Certificate authority and you are trying to get the client certificate from the Local CA which is ASA.
The Local CA maintains its own user database of SSL VPN users.
crypto ca server user-db add email dn
Configuration > Remote Access VPN > Certificate Management > Local Certificate Authority > Manage User Database
The Local CA only supports user enrollment through it's enrollment interface at the following url. Enrollments can only be done on interfaces where webvpn is enabled.
Please rate all helpful posts
thanks for your help. With your tips and a litte experementing I could solve the problem. The CA Server is now sccesable with the web browser. The Problem was with the ports and interfaces.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: