Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


Cert for ASA5510

Posted on 2011-10-13
Medium Priority
Last Modified: 2012-08-13
Im looking to setup SSL anyconnect on a ASA5510. Can I use a wildcard certificate for this? If so what format does it need to be in?
Question by:DEFclub
  • 2

Author Comment

ID: 36965060
I currently have .pfx format that was exported from IIS
LVL 33

Assisted Solution

MikeKane earned 400 total points
ID: 36965313

Accepted Solution

Shmoid earned 1600 total points
ID: 36965419
Yes, you should be able to use your exported certificate.
By default Microsoft’s .pfx file will be DER encoded.You will need to use OpenSSL to convert to PEM encoding.
You can download openssl for Windows at:


The openssl command to convert the encoding is:

openssl pkcs12 -in filename.pfx -out filename.pem

You will be prompted for the import password which is the password you specified when you exported from IIS. You will then be prompted for a PEM passphrase. It can be anything you choose as long as it’s 4 or more characters. You will need it when you import to the ASA5510.

Now that you have a file in the proper format that contains both public and private keys you can import into the ASA5510. I don’t know if this can be done from the GUI or not. But you can do it from the command line.

The command is:

SA(config)#   crypto ca import <trust-point-name> filename.pem <passphrase>

Author Closing Comment

ID: 36965449

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There’s a movement in Information Technology (IT), and while it’s hard to define, it is gaining momentum. Some call it “stream-lined IT;” others call it “thin-model IT.”
Let’s face it: one of the reasons your organization chose a SaaS solution (whether Microsoft Dynamics 365, Netsuite or SAP) is that it is subscription-based. The upkeep is done. Or so you think.
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Suggested Courses

581 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question