Solved

Help installing wildcard cert onto Cisco ASA

Posted on 2013-11-13
3
2,142 Views
Last Modified: 2014-01-11
Hi guys,

Can someone help me with installing a wildcard cert onto my ASA.

I already have the cert (created on Windows) with the private and public keys, and the CA certs.

I have created a trustpoint for the CA and installed the CA cert. I've converted the cert using OpenSSL to PCKS12. I am getting problems importing the identity cert.

The commands I have tried entering and output are as follows.

crypto ca import <trustpoint> pkcs12 ****

Enter the base 64 encoded pkcs12.
End with the word "quit" on a line by itself:
-----BEGIN PKCS12-----
<snip>
-----END PKCS12-----
quit
ERROR: Import PKCS12 operation failed

crypto ca import <trustpoint> pkcs12 ****

Enter the base 64 encoded pkcs12.
End with the word "quit" on a line by itself:
<snip>
quit
ERROR: Import PKCS12 operation failed

<snip> is the text output from OpenSSL.

Thanks.
0
Comment
Question by:InteraX
  • 2
3 Comments
 
LVL 28

Expert Comment

by:asavener
ID: 39644524
Try using a unix-compatible text editor such as Notepad++ or Programer's File Editor.  Open the cert with one of those, and then copy/paste it into your config.
0
 
LVL 16

Accepted Solution

by:
InteraX earned 0 total points
ID: 39644544
I only use notepad++. It's very strange. I've managed to import the pfx using ASDM, but as I'm using Cisco Security Manager to manage our firewalls (we have over 30) this doesn't really help me very much.
0
 
LVL 16

Author Closing Comment

by:InteraX
ID: 39773100
Was unable to import cert from the command line. Had to import it via the GUI.
0

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Port forwarding 14 153
Wireless clients bypassing proxy, firewall instead 8 53
Expanding Subnet Mask 20 111
non-domain members are not prompted for credentials 18 43
Phishing is at the top of most security top 10 efforts you should be pursuing in 2016 and beyond. If you don't have phishing incorporated into your Security Awareness Program yet, now is the time. Phishers, and the scams they use, are only going to …
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
This Micro Tutorial will teach you how to censor certain areas of your screen. The example in this video will show a little boy's face being blurred. This will be demonstrated using Adobe Premiere Pro CS6.
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question