Link to home
Start Free TrialLog in
Avatar of andrewing
andrewing

asked on

CA Certificate on Cisco ASA 5512x

Hi experts, I have been searching the forums endlessly for this one. I am currently trying to install a Certificate on a leased public IP address from our ISP. We use this IP address as an outward facing IP on the ASA. Currently, the IP address is self signed. I created the CSR and sent to GoDaddy. I received an error stating I needed a fully qualified domain name as the CSR was just created for the outside facing IP address. This makes sense but they also told me that I could not use a leased IP. I believe what I need to do is create an A record, either on my internal DNS or contact my ISP and create with them. This would give me the FQDN. Can anyone confirm? I believe I should be able to also use this IP address. Thank you for comments. I can provide any other information, your comments are greatly appreciated.
SOLUTION
Avatar of Vince Glisson
Vince Glisson
Flag of United States of America image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
ASKER CERTIFIED SOLUTION
Avatar of Pete Long
Pete Long
Flag of United Kingdom of Great Britain and Northern Ireland image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of andrewing
andrewing

ASKER

Thank you for the comments. I reached out to GoDaddy and purchased a domain. I am pointing our IP to that domain with an A record. I spoke with my ISP before doing this and they did not for see a problem nor did they recommended doing anything else other than that. I am going to recreate the CSR file with the FQDN I have purchased and hopefully that will do the trick to get teh SSL Cert back and installed on the ASA. Thank you both for the comments, I will update accordingly.
Avatar of Pete Long
Pete Long
Flag of United Kingdom of Great Britain and Northern Ireland image
No Worries Andrew - Hope it goes smoothly :)

Pete
SOLUTION
Avatar of Vince Glisson
Vince Glisson
Flag of United States of America image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of andrewing
andrewing

ASKER

Vince, this was for an outward facing IP essentially for a VPN users. My goal was to install a SSL Certificate on this IP instead of a self-signed. I appreciate your involvement and willingness to help.

Pete, your screenshots really helped me understand. They are a great tool. Thank you much for the assistance regarding that. It helped me understand installing the certificates. We are installed and looks to be running well.

Thank you both again, I will close accordingly!

Andrew