cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
662
Views
0
Helpful
0
Replies

CA Server issue

sbconnect2me
Level 1
Level 1

My mystake has given the commands

no crypto pki server

no crypto pki trustpoint CA-name

After that  we cannot enroll any router client with the CA server

CRAEACA01K#sh crypto pki server

Certificate Server PoLCA:

    Status: disabled, Storage not accessible

    State: check failed

    Server's configuration is locked  (enter "shut" to unlock it)

    Issuer name: CN=xxx, C=xxx, OU=xxx

    CA cert fingerprint: Bxxxxxxxxxxxxxx

    Granting mode is: manual

    Last certificate issued serial number (hex): 0

    CA certificate expiration timer: 02:00:00 EET Jan 1 1970

    CRL not present.

    Current primary storage dir: flash:/CA/

    Database Level: Minimum - no cert data written to storage

CRAEACA01K#sh crypto pki certificates

CA Certificate

  Status: Available

  Certificate Serial Number (hex): 01

  Certificate Usage: Signature

  Issuer:

    cn=PoLCA

    c=GR

    ou=IT

  Subject:

    cn=PoLCA

    c=GR

    ou=IT

  Validity Date:

    start date: 12:22:11 EEST Oct 24 2011

    end   date: 12:22:11 EEST Oct 22 2016

  Associated Trustpoints: PoLCA

  Storage: nvram:PoLCA#2CA.cer

CRAEACA01K#sh flash:

-#- --length-- -----date/time------ path

1            0 Oct 24 2011 09:16:18 CA

2          241 Jun 10 2013 10:18:36 CA/PoLCA.crl

3          963 Oct 24 2011 07:27:56 CA/PoLCA.prv

4          272 Oct 24 2011 07:27:42 CA/PoLCA.pub

5         1595 Oct 24 2011 07:28:42 CA/PoLCA_00001.p12

CRAEACA01K#dir nvram:

Directory of nvram:/

  230  -rw-        6909                    <no date>  startup-config

  231  ----        1915                    <no date>  private-config

  232  -rw-        6909                    <no date>  underlying-config

    1  -rw-         108                    <no date>  ifIndex-table

    2  ----          46                    <no date>  persistent-data

    3  -rw-         532                    <no date>  PoLCA#6.cer

    4  -rw-         561                    <no date>  PoLCA#1CA.cer

    5  -rw-        2945                    <no date>  cwmp_inventory

    8  -rw-         561                    <no date>  PoLCA#2CA.cer

Would appreciate if anyone can give an idea how to resolve this issue. Thanks

0 Replies 0
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: