We are having a big problem trying to install an SSL certificate on an ASA 5510 running 8.2 (5). We have installed many of these from different vendors and not had any real issues before.
Following the Cisco recommended procedure these are the steps we have followed:
1. Set clock to correct time
2. Generate the RSA key and CSR and sent to the CA.
3. Authenticate the trustpoint and install the intermediate certificate.
4. Install the certificate.
Here are the errors we are getting during the process:
A. In step 2 we get this message.
"WARNING: The certificate enrollment is configured with an fqdn that differs from the system fqdn. If this certificate will be used for VPN authentication this may cause connection problems."
I have seen this before and normally causes no issues and the fqdn is the same in any event.
B. In step 4 the certificate fails to install and gives the following message:
"Failed to parse or verify imported certificate"
We have reviewed the Cisco explanation on this error but it does not really help.
TROUBLE SHOOT SO FAR
We checked the authentication of trustpoint and the RSA keys. We thought the hash SHA was incorrect as the new certificates are all SHA2 (256) so we had the CA issue a new cert with SHA1 but this did not work.
Hi Team, I have one exclusion provided by internal team which is Is it right way to exclude ? *\Program Files\XYZ\* , as per Cisco Docs i see its not recommended because it will create performance issue when we use * at starting , So...
Central Log Management using Cisco Security Analytics and Logging, December 2nd at 8am-9:30am PT
Cisco Security Analytics and Logging is Cisco’s Central Log Management solution for Network Operations and Security Outcomes. It is delivered both as a c...
Cyberattacks are more sophisticated than ever and your online presence has never been more critical to the success of your business. Cisco, through its OEM partnership with Radware, can help secure your digital future by continuously monitoring...