cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
515
Views
0
Helpful
4
Replies

CA server Auth Problem

sgd729
Level 1
Level 1

hi , i have problem with connecting one device to CA server 

i create trustpoint 

crypto pki trustpoint CA
 enrollment terminal
 serial-number
 subject-name CN=x , OU=x
 revocation-check none
 rsakeypair my.ca.key

but when i paste CSR that i create with cry pki enroll, output is fail in saving cert

im really lost in dark i need serious help about connecting Device to CA server 
please help me! if u can told me what procedure i should go i find my way out

domain active
ssh active
CA accessable
CSR submitable

4 Replies 4

@sgd729 Please can you provide the output from the console (screenshot) when you enroll to the trustpoint, so we can see the exact error.

20220825_203531.jpg

20220825_203611.jpg

 i think its CA template problem

@sgd729 what order are you entering these commands?

You first run "crypto pki authenticate <TRUSTPOINTNAME> then paste the CA certificate

Next, run "crypto pki enroll <TRUSTPOINTNAME> copy the CSR, get this signed by the CA then run "crypto pki import <TRUSTPOINTNAME> certificate" and paste the signed certificate.

Example

Thats my problem where should i get CA for cry pki auth , i done one very long time ago i forgot the procedure