Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
639
Views
0
Helpful
2
Replies

Cisco ASA Identity Cert

Go to solution
dasgill
Level 1
Level 1

‎12-03-2019 02:37 AM

I have removed a soon to be expired identity certificate from Cisco 5516X appliance and added a new identiy certificate which expires in 2021. Anyconnect VPN connections to the appliance is still using the certificate that has been removed. Wondering if the identiy certs for anyconnect certificate authentication is cached on the ASA. I need all references clear so the new ID certificate is used.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Karsten Iwen
VIP
VIP

‎12-03-2019 04:18 AM

Did you sign the new certificate to the interface?

 

ssl trust-point VPN-2019 outside

 

And do a 

show run | i VPN-2019

where "VPN-2019" is the name of your old trust point.

 

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Karsten Iwen
VIP
VIP

‎12-03-2019 04:18 AM

Did you sign the new certificate to the interface?

 

ssl trust-point VPN-2019 outside

 

And do a 

show run | i VPN-2019

where "VPN-2019" is the name of your old trust point.

 

0 Helpful

Go to solution
dasgill
Level 1
Level 1
In response to Karsten Iwen

‎12-03-2019 05:40 AM

Thank you very much. The new cert was not signed to the outside interface. Done. Works now. 

0 Helpful
Customers Also Viewed These Support Documents