Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3287
Views
5
Helpful
3
Replies

Export SSL-VPN license and import it to another firewall

Go to solution
boody9999
Level 1
Level 1

‎05-20-2014 01:44 PM

can we able to export this license from ASA 5520 Firewall (version 8.2) and import it to another firewall ASA 5520 with the same version 8.2 ?

Regards

Eng.Boody

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎05-20-2014 02:02 PM

dmoudgil answered about certificates. You asked about licenses.

ASA feature licenses are not transferrable except in case of an RMA (Return Material Authorization - i.e. where a failed unit has been replaced under a support contract). In case of an RMA, the case owner will provide instructions to use the self-service licensing portal to get an activation-key for the replacement unit.

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Dinesh Moudgil
Cisco Employee
Cisco Employee

‎05-20-2014 01:56 PM

Hi ,

How to copy SSL certificates from one ASA to another

This can be done if you had generated exportable keys. You need to export the certificate to a PKCS file. This includes exporting all of the associated keys.

Use this command to export your certificate via CLI:

    ASA(config)#crypto ca export <trust-point-name> pkcs12 <passphrase>

Note: Passphrase - used to protect pkcs12 file.

Use this command to import your certificate via CLI:

    SA(config)#crypto ca import <trust-point-name> pkcs12 <passphrase>

Note: This passphrase should be the same as used when exporting the file.

This can also be done through ASDM for an ASA failover pair. Complete these steps to perform this:

    Login to the primary ASA via ASDM and choose Tools--> Backup Configuration.

    You can backup everything or just the certificates.

    On the standby, open ASDM and choose Tools --> Restore Configuration.

 

For further information:-
http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/107956-renew-ssl.html

 

Regards,

Dinesh Moudgil

 

Cisco Network Security Channel - https://www.youtube.com/c/CiscoNetSec/

Go to solution
boody9999
Level 1
Level 1
In response to Dinesh Moudgil

‎05-22-2014 04:01 PM

Thanks Marvin Rhoads and dmoudgil for your effort to provide me such this information, regarding to you dmoudgil about your suggested to copy the SSL-VPN certificate ,ill test it and feed you back later.

Thanks again,

Eng. Boody

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎05-20-2014 02:02 PM

dmoudgil answered about certificates. You asked about licenses.

ASA feature licenses are not transferrable except in case of an RMA (Return Material Authorization - i.e. where a failed unit has been replaced under a support contract). In case of an RMA, the case owner will provide instructions to use the self-service licensing portal to get an activation-key for the replacement unit.

0 Helpful
Customers Also Viewed These Support Documents