Solved

ASA 5515x and Certificate

Posted on 2014-11-21
1
126 Views
Last Modified: 2014-12-19
I am trying to use certificate based and AAA based authentication for my clientless vpn.  I went through Entrust and finally received my certificate; however, when I verify my domain using their site, I receive the following message "the hostname (mydomain.com (changed)) is not found in the certificate.  Is this because the host name and domain name I have assigned to the asa are not mydomain.com?  If this is the case, if I change my hostname will this affect anything else.  I currently have a Site to Site VPN tunnel; however it is not based on certificate authentication.  Any advice is appreciated.
0
Comment
Question by:krhoades7601
1 Comment
 
LVL 57

Accepted Solution

by:
Pete Long earned 500 total points
ID: 40458038
>>Is this because the host name and domain name I have assigned to the asa are not mydomain.com?  

Possibly, before you change the the domain name on the asa do the following

crypto key zeroize
domain-name your-actual-domain.com
crypto key gen rsa modulus 2048

Then try again
1

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
PEAP authentication 7 45
Using VLAN Interface in ASA 5 34
Mapping drives cross domain via logon script 2 24
cisco sg 200 trunking 4 26
This article will cover setting up redundant ISPs for outbound connectivity on an ASA 5510 (although the same should work on the 5520s and up as well).  It’s important to note that this covers outbound connectivity only.  The ASA does not have built…
OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …

773 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question