Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2693
Views
0
Helpful
1
Replies

WSA appliance - Enable HTTPS proxy - uploading signed certificate error. CSR option

reynaldolopeza
Level 1
Level 1

‎02-21-2017 07:16 AM

Hi, I have two WSA appliances configured in explicit proxy mode and high availability.

I want to enable HTTPS proxy for HTTPS decryption, and I am using the CSR option to generate a certificate.

I cannot upload successfully the signed certificate the internal CA of the client provided me. I get the following error:

"Error    —    Certificate and key do not match."

The file generated is in PEM format.

What can be wrong?. Please your help with this issue.

Thanks in advance.

2 people had this problem
Labels:
0 Helpful
1 Reply 1

Farhan Mohamed
Cisco Employee
Cisco Employee

‎04-06-2017 06:16 AM

Hello Reynaldo,

Please find information below how to do it correctly, follow this from scratch:-

Steps to configure HTTPS Proxy and CSR Option on Web Security Appliance:
https://www.youtube.com/watch?v=1g_96XYnkz4&feature=youtu.be


Steps to enable HTTPS proxy on (WSA) & Uploading Root/Intermediate certificate option.
https://supportforums.cisco.com/video/11932521/steps-enable-https-proxy-...

#Please rate if it helps.

0 Helpful
Customers Also Viewed These Support Documents