Solved

Web Server

Posted on 2014-04-07
2
299 Views
Last Modified: 2014-05-25
I have a Web Server which is placed behind the Cisco ASA Firewall.
The ASA Firewall is configured for SSL VPN access for the URL https://www.abc.com/
The SSL certificate is configured in the Cisco ASA firewall. The firewall 1st authenticate using SSL VPN & allows the Web Page of the Web server to be accessed.

Now I don't want to have the SSL VPN on the firewall. I want to access the Web server directly behind the firewall. So I am planning to install the SSL certificate on the Web Server.

I want to remove the certificate configured in the ASA & install the same certificate on the Web Server.

Let me know if this will work. Can i use the same certificate & install it in the Web Server.
0
Comment
Question by:SrikantRajeev
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 6

Accepted Solution

by:
mwenenko earned 500 total points
ID: 40076111
You have to configure the firewall to SSL passthrough instead of SSL termination. You may need to reconfigure ASA.

If you can export the certificate along with the root and intermediate certificates, then you should not have any issue using the same certificate in web server. Just open the port in firewall to the webserver and configure the certificate. You should be good.

I would suggest you create a new config in ASA. Test that and then turn off the old config.
0
 
LVL 1

Author Closing Comment

by:SrikantRajeev
ID: 40090305
Thanks
0

Featured Post

On Demand Webinar: Networking for the Cloud Era

Did you know SD-WANs can improve network connectivity? Check out this webinar to learn how an SD-WAN simplified, one-click tool can help you migrate and manage data in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
The conference as a whole was very interesting, although if one has to make a choice between this one and some others, you may want to check out the others.  This conference is aimed mainly at government agencies.  So it addresses the various compli…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question