Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

Can't install 3rd Party SSL into Cisco ASA 5505

Posted on 2014-11-11
3
Medium Priority
?
1,403 Views
Last Modified: 2014-11-19
Hello all

I have a Cisco ASA 5505 , running ASA Version 8.3(1), and ASDM version 6.3(1)

I cannot install a 3rd party (GoDaddy/Starfield tech) SSL certificate for the life of me.

Generating the CSR from the ASA itself I get "Failed to parse or verify imported certificate" even though the starfield specific root and intermediate certificates seem to install fine.

Someone in the Cisco support forums suggested generating the CSR from a windows computer, installing the cert on windows computer, and then exporting out to PKCS12 (.pfx), then importing into ASA afterward.

I'm met with Error Import PKCS12 operation failed.
0
Comment
Question by:Tom-J-Lael
  • 2
3 Comments
 
LVL 5

Expert Comment

by:Darkstriker69
ID: 40436195
Your best bet is to create the certificate request on the ASA. Here are some straightforward instructions for using the ASDM to create a certificate request. You will want to be sure to change the CN value to your match your DNS record.

https://www.digicert.com/csr-creation-cisco-asa-vpn.htm
0
 
LVL 3

Accepted Solution

by:
Tom-J-Lael earned 0 total points
ID: 40443267
Darkstriker69

Thanks for that info. I did see that before. Originally I did generate CSR from ASA itself, but had some much trouble I was willing to entertain generating it from elsewhere.

My problem was two fold

1. Needed to be SHA-1 , and not SHA-2. My best guess is because of the old ASA code ( 8.3.1)

2.  Secondly, the SSL I bought was for 3 years, but the Intermediate cert and root cert I guess are only good for 2.
0
 
LVL 3

Author Closing Comment

by:Tom-J-Lael
ID: 40451918
Because no one else presented a solution that worked. The one person who replied sent a link to KB article I had already seen and tried.
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this article, WatchGuard's Director of Security Strategy and Research Teri Radichel, takes a look at insider threats, the risk they can pose to your organization, and the best ways to defend against them.
A new hacking trick has emerged leveraging your own helpdesk or support ticketing tools as an easy way to distribute malware.
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…

564 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question