zzl630
asked on
Getting CSR file from Cisco Router
Hello EE,
Our company has a VPN login website recerntly needs CSR renew. Unfortunately our Cisco router has a SDM won't launch issue which couldn't be fixed by any method(tried downgrade java). So is there any way I can create this CSR file without using SDM?
Thank you so much!
ZZ
Our company has a VPN login website recerntly needs CSR renew. Unfortunately our Cisco router has a SDM won't launch issue which couldn't be fixed by any method(tried downgrade java). So is there any way I can create this CSR file without using SDM?
Thank you so much!
ZZ
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Telnet shouldn't be a problem. What version of IOS are you using? Are you in config mode when you get that error?
ASKER
version 12.4
I changed to config mode, and no error shows up now.
Do you know what is command "ip-address ethernet0" is doing? I have a "ethernet0 is not a valid interface or IP address" error.
Sorry for so many problems.
Thanks,
ZZ
I changed to config mode, and no error shows up now.
Do you know what is command "ip-address ethernet0" is doing? I have a "ethernet0 is not a valid interface or IP address" error.
Sorry for so many problems.
Thanks,
ZZ
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks,SteveJ
Now I am trying to rsakeypair login1.*******.com 2048s
^
It shows invalid input detected at '^' marker again.
Any clue?
Thanks,
ZZ
Now I am trying to rsakeypair login1.*******.com 2048s
^
It shows invalid input detected at '^' marker again.
Any clue?
Thanks,
ZZ
What's the name of your trustpoint? And . . . what model is the router?
If you type a question mark after each command, Cisco will display the acceptable commands.
So . . . "rsakeypair ?" . . . ."rsakeypair trustpoint_name ?" . . . "rsakeypair trustpoint_name 2048 ?"
Good Luck,
SteveJ
If you type a question mark after each command, Cisco will display the acceptable commands.
So . . . "rsakeypair ?" . . . ."rsakeypair trustpoint_name ?" . . . "rsakeypair trustpoint_name 2048 ?"
Good Luck,
SteveJ
ASKER
Thank you for your patient, SteveJ,
This is what I got:
It seems I passed the former problem, but have a new one.
Thanks,
ZZ
This is what I got:
trisen#config
Configuring from terminal, memory, or network [terminal]? terminal
Enter configuration commands, one per line. End with CNTL/Z.
trisen(config)#crypto pki trustpoint login1.tri-sen.com
trisen(ca-trustpoint)#enrollment url http://login1.******.com/
trisen(ca-trustpoint)#subject-name OU=Secure Link SSL, O=William *******
trisen(ca-trustpoint)#ip-address 75.***.***.5
trisen(ca-trustpoint)#serial-number none
trisen(ca-trustpoint)#regenerate
trisen(ca-trustpoint)#password password1
trisen(ca-trustpoint)#rsakeypair login1.******.com?
WORD
trisen(ca-trustpoint)#rsakeypair login1.******.com 2048?
<360-2048>
trisen(ca-trustpoint)#rsakeypair login1.******.com 2048
trisen(ca-trustpoint)#exit
trisen(config)#crypto pki authenticate login1.******.com
% Error in receiving Certificate Authority certificate: status = FAIL, cert leng
th = 0
It seems I passed the former problem, but have a new one.
Thanks,
ZZ
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
waiting for solution from vendor and Cisco. Will update.
Thanks,
ZZ
Thanks,
ZZ
ASKER
Still waiting for vendor to do this. Close this question, credit for everyone.
Thanks,
ZZ
Thanks,
ZZ
ASKER
Still waiting for vendor to do this. Close this question, credit for everyone.
Thanks,
ZZ
Thanks,
ZZ
ASKER
Thank you for your response.
I am using telnet to communicate with my router. I got a problem when I tried first command:
"crypto pki trustpoint login1.*******.com"
^
%invalid input detected at '^' marker.
Did I do sth wrong? Or telnet doesn't support this?
Thanks,
ZZ