Hiya,

I'm trying to renew our RA cert which we are using a wildcard. I've added PKCS12 file (.pfx) with the password and I've changed the RA cert to use the new object I've made.

When I deploy it getting the following error:

XX-FTD2 >> [error] :
ssl trust-point xx-wild2022

I find it odd this is flagging - but would get if it showed on ASA. Do i need to change anything elsewhere or any other logs/debugs that could help. Here is majority of transcript.

=========SNORT APPLY=========

========= CLI APPLY =========

FMC >> clear configuration session OBJECT
XX-FTD2 >> [info] : Session OBJECT does not exist.

FMC >> clear configuration session FMC_SESSION_1
XX-FTD2 >> [info] : Session FMC_SESSION_1 does not exist.

FMC >> clear configuration session FMC_SESSION_2
XX-FTD2 >> [info] : Session FMC_SESSION_2 does not exist.

FMC >> no strong-encryption-disable
FMC >> logging debug-trace
XX-FTD2 >> [info] : INFO: 'logging debug-trace' is enabled. All debug messages are currently being redirected to syslog:711001 and will not appear in any monitor session

FMC >> crypto isakmp nat-traversal
FMC >> ssl trust-point xx-wild2022
XX-FTD2 >> [error] :
ssl trust-point xx-wild2022
^
ERROR: % Invalid input detected at '^' marker.
Config Error -- ssl trust-point xx-wild2022

========= INFRASTRUCTURE MESSAGES =========
Lina config ROLLBACK failure log
Lina configuration application failure. Error in lina apply phase due to Config Error response from LINA

Rollback skipped as Lina and SNORT are in sync
Write mem executed as Lina and SNORT are in sync

Lina write mem operation successful

Cheers

George