Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1252
Views
0
Helpful
0
Replies

SSL CERTIFICATE INSTALL PROBLEM ON ASA 5510

veltech
Level 1
Level 1

‎05-21-2014 12:12 PM

Hi All,

We are having a big problem trying to install an SSL certificate on an ASA 5510 running 8.2 (5). We have installed many of these from different vendors and not had any real issues before.

THE PROBLEM

Following the Cisco recommended procedure these are the steps we have followed:

1. Set clock to correct time

2. Generate the RSA key and CSR and sent to the CA.

3. Authenticate the trustpoint and install the intermediate certificate.

4. Install the certificate.

Here are the errors we are getting during the process:

A. In step 2 we get this message.

"WARNING: The certificate enrollment is configured with an fqdn
that differs from the system fqdn. If this certificate will be
used for VPN authentication this may cause connection problems."

I have seen this before and normally causes no issues and the fqdn is the same in any event.

B. In step 4 the certificate fails to install and gives the following message:

"Failed to parse or verify imported certificate"

We have reviewed the Cisco explanation on this error but it does not really help.

TROUBLE SHOOT SO FAR

We checked the authentication of trustpoint and the RSA keys. We thought the hash SHA was incorrect as the new certificates are all SHA2 (256) so we had the CA issue a new cert with SHA1 but this did not work.

Can anyone help with this issue??

Thanks,

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents