Cisco ASA 5515, running 9.5(2), so the latest and greatest.
It has a certificate that's attached to the outside interface used for SSL VPNs and AnyConnect too I suppose. Certificate was issued by GoDaddy, but expires in the next week or two.
I went to GoDaddy and 'renewed' the certificate (didn't have to generate a CSR or anything) but I just want some clarification on how to apply it? They sent me the certificate as well as the intermediate (I think) file entitled "gd_bundle-g2-g1.crt". I opened that file in notepad and there are actually THREE certificates inside it.
When I navigate on the current ASA to "Certificate Management" and "CA Certificates", the list is empty - there's no certificate in there. I thought that was where the intermediate certificates went, but this has been working for years, with dozens of users connecting daily via VPN so i'm hesitant to do something that's going to break it if not necessary.
In "Identity certificate" (see attachment 1) there are the two certificates - one looks to be self-generated, but it's the godaddy one (that expires Feb 2016) that is in use. Also attaching (see attachment 2) the window that shows what's attached to the interface.
Want to see what I need to do to correctly import (re-generating if necessary) the certificate to ensure no downtime.
Also there are two 5515s connected in failover mode - all work is done on the primary, but want to make sure I don't have to load the certificate on the secondary as well?