![]() If you do not have an RSA key, complete Steps a and b. Note: It is not recommended to use because if you regenerate your SSH key, you invalidate your certificate. Under Add Identity Certificate, select the Add a new identity certificate radio button, and choose your key pair from the drop-down menu. Select the certificate you want to renew beneath Configuration > Device Management > Identity Certificates, and then click Add. Refer to the Cisco Technical Tips Conventions for more information on document conventions. If your network is live, make sure that you understand the potential impact of any command. The information in this document was created from the devices in a specific lab environment. This procedure is a step-by-step process on how to issue a new CSR for a current certificate with the same root certificate that issued the original root CA. This procedure does not impact your network as long as the current certificate is not deleted. The procedure in this document is based on a valid configuration with a certificate installed and used for SSL VPN access. This procedure pertains to ASA versions 8.x with ASDM version 6.0(2) or later. There are no specific requirements for this document. Special certificate parameter requirements are sometimes required by your certificate vendor, but this document is intended to provide the general steps required to renew an SSL certificate and install it on an ASA that uses 8.0 software. *Forgot to mention, the user installed the latest batch of Windows updates last night as well, if that information helpsĪny help would be greatly appreciated, or if this is the wrong sub please let me know so I can move it!Įdit2: update for anyone who was interested: turns out there is a known issue on our ASA with users who lose connectivity while on VPN.The procedure in this document is an example and can be used as a guideline with any certificate vendor or your own root certificate server. CA isn't expired, user was able to log into An圜onnect yesterday without issue When clicking on "Connect" on the An圜onnect client, user is not prompted for a username/pw but instead receive the certificate validation error User was able to log into their Windows account using their old credentials (they magically remembered them today) but not the pw we gave them yesterday We were able to change their AD password and get the system updated with the new credentials yesterday afternoon, but shortly thereafter the user's computer BSOD for thermal issues (we'll be replacing the machine soon, but they are about 6 hours away from our office so that is not feasible immediately). This remote user forgot their password and needed to have it reset. My problem is a little more specific, so I was hoping someone may have seen something like this in the past. My google fu returned some results for the issue, but they all seemed to be related to resolving then issue on the ASA itself. I received a call from a remote user who gets the Cert Validation error when trying to connect their Cisco anyconnect client. My official title is helpdesk technician, but we are currently operating without any sysadmins so my knowledge of our network configuration is limited at best, but I'll do my best to answer any questions that might help. Hopefully this is the right place to post this.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |