ASA 8.4.3 install the certificate for webvpn without CSR

Hi guys,.

I have spent a lot of time trying to install our wildcard certificate in the ASA for use with anyconnect, but was not permanently misserably. I red a lot of messages, but don't really know what I'm doing.

Our Web server, I got DigiCertCA.crt, star.mycompany.com_cert.pem and star.mycompany.com_key.pem. The certificate is a certificate wildcard for mycompany.com.

The DigiCertCA.crt file is the certificate called "DigiCert High Assurance CA-3" on the Web site: https://www.digicert.com/digicert-root-certificates.htm
with the series "0A5F114D035B179117D2EFD4038C3F3B".

On the SAA, I checked that I have no present trustpoint. Orders: "sh ca crypto certificates" and "sh crypto ca trustpoints" give no output.

OK, so lets get started to set up and are having problems:

ASA (config) # crypto ca trustpoint star.mycompany.com

Domain name full webvpn.mycompany.com ASA(config-ca-Trustpoint) #.

ASA(config-ca-Trustpoint) # Terminal registration

ASA(config-ca-Trustpoint) #-revocation checking no

Output ASA(config-ca-Trustpoint) #.

Authenticate the crypto ca ASA (config) # star.mycompany.com

Enter the base-64 encoded certificate authority.

End with the word "quit" on a line by itself

-BEGIN CERTIFICATE-

# CONTENT DigiCertCA.crt #.

-CERTIFICATE OF END-

quit smoking

INFO: Certificate has the following attributes:

Fingerprint: c68b9930 c8578d41 6f8c094e 6adb0c90

Do you accept this certificate? [Yes/No]: Yes

Trustpoint "star.mycompany.com" is a subordinate certification authority and is a non self-signed certificate.

Certificate of the CA Trustpoint accepted.

% Certificate imported successfully

ASA (config) # crypto ca certificate star.mycompany.com import

ATTENTION: Registration certificate is configured with a complete domain name

that differs from the fqdn of the system. If this certificate will be

used for VPN authentication, this can cause connection problems.

You want to continue with this registration? [Yes/No]: Yes

% The FQDN in the certificate name will be: webvpn.mycompany.com

Enter the base 64 encoded certificate.

End with the word "quit" on a line by itself

-BEGIN CERTIFICATE-

# CONTENT star.mycompany.com_cert.pem #.

-CERTIFICATE OF END-

quit smoking

Could not import the certificate-

Certificate contains a general practitioner of the device public key

for point star.mycompany.com trust

ERROR: Cannot analyse or check the imported certificate

ASA (config) #.

Please help me! I'm not a guru with certificates.

Kind regards

Tom van Leeuwen

Tom,

you create a container PKCS12 which includes certificates, and CA key.

I don't know how to do with linux, no idea with Windows

Michael

Please note all useful posts

Tags: Cisco Security

Similar Questions

  • Install the certificate in ASA

    HI a new ASA, I'm trying to install the certificate. But when I paste data of certificate, I got an error message. Please see attached screenshot. Can anyone hear me? Thank you.

    As noted in step 5 of the procedure of Cisco, you save the CSR to a text file.

    This file must be sent to your CA.

    For a public certification authority, it is through a web portal (more common) or e-mail.

    If it is your own internal CA, and administer you it, you could just copy the text on the tool server certificates issuing CA.

  • Pavilion dv3: cannot install the driver for graphics (Clubhouse dv3)

    Hello! I can't find and install the driver for graphics card. I see on the device manager that without "ATI radeon 5400 series.

    someone help me! Thank you

    Hi @QuanTrinh

    Welcome to the Forums of HP Support! I want you to meet some problems to find a graphics driver. I'll be happy to help you with that. Let me start by getting your product number , there are a number of dv3 models in this series. I also need to confirm that you are using Windows 7 32 - bit as well.

  • L750D-14R satellite - cannot install the driver for the TouchPad Win7

    Hello

    I have a problem with drivers for the touchpad. I downloaded v 15.2.11.1 Synaptics and me couldn't install them.
    "Installation of Synaptics (sync TP) ranked" I've got Windows 7 x 64. I've looked everywhere but I can't find any information on this problem.

    If someone knows what can go wrong and how can I fix this problem I would appriciate it.

    Never had any problems with installing the touchpad driver.
    I guess its not the touchpad driver problem but the problem with your system.

    First, you must uninstall the old driver for the touchpad.
    This can be done in the control panel-> programs & features

    Clean the system using some freeware like for instance CCLeaner tools.
    Restart the laptop between procedures.

    Then download driver Synaptics driver Toshiba UE page.
    Alternatively, you can try to install the driver for the Synaptics driver page: http://www.synaptics.com/resources/drivers
    In my case it worked and this driver has added some additional options that I would change in the Synaptics touchpad settings

  • Cannot install the drivers for the DVD drive on the Satellite X 200

    Hello
    Can anyone, please, help me? I could not install the driver for the dvd drive. I have vista ultimate 32 bit now, do a clean installation of which was preinstalled in my X 200 series new lappy.

    Almost all of the drivers had been installed successfully, but for dvd player she always ends up saying "this application cannot be installed on this computer. The installer is now abandoned. »

    Can someone please help me, what could be the reason? And also if someone could provide a list of the software that was pre-installed in the lappy would be appreciated. Thank you

    Concerning
    Suraj

    Hi guys

    I recommend you research a little in this forum rather than wait
    The solutions have been posted already here:

    http://forums.computers.Toshiba-Europe.com/forums/thread.jspa?threadID=28963

    http://forums.computers.Toshiba-Europe.com/forums/thread.jspa?threadID=28538

    Best regards

  • I can't install the Flash for Firefox plugin

    I can't install the plugin for Firefox (Firefox version 1.5.0). Flash I tried to install the latest version 9.0.16.0 to the Adobe Download Center. There is no error messages or warnings during installation.
    The Flash for IE plugin works very well.

    I have all tried, uninstall the pre-installed version (7), re - install FireFox, uninstall all plugins, download and install everything again... still the same problem.

    Hello

    I don't think that it has something to do with the software pre-installed Toshiba.
    I recommend the forum of firefox or flash installation support.

    PS: I read on the net that it is possible that flash player has been placed in the right folder and links shows on the wrong file. Someone has checked and changed manually.
    Try a bit of google.

  • How to install the patch for the security hole last QT process running on a Dell with Windows 7 (Windows 10 upgrade) laptop? I got a message from my program called Belarc that the patch is missing on this device. Thank you

    How to install the patch for QuickTime Pro for Windows 7 on a Dell laptop... I got an alert through a program which I run from time to time (Belarc) and it says that there was a security breach detected by Apple (or one of its vendors, who manages the security of the operating system such as Cisco) during December 2015.

    Please notify.  Thanks in advance for your guidance pertaining to my question.

    Download QuickTime for Windows - Apple 7.7.9

    Apple ends development of QuickTime Player 7 for Mac and Windows operating system, so don't expect much more beyond this last version.

    The installation shows are supported for Windows 7 and lower, so I don't know what to expect on Windows 10.

  • Cannot install the update for adobe flash player

    I'm not able to install the update for adobe flash player on my MacBook Pro running Yosemite.  I can access adobe flash player if Opera but not able to access it via Safari.  Any suggestions?

    Thank you very much!

    Have you checked to see if it is compatible with or intended for El Capitan Yosemite?

  • Satellite A100-599 - cannot install the driver for nVidia GeForce Go 7600 graphics card

    Greetings to all!

    Try to install the driver for Nvidia GeForce Go 7600 after reinstallation of the entire system, but without success. Only safe mode is available after this pilot plant, tried with Windows XP, Vista and Windows 7 and with different drivers from Nvidia and Toshiba sites - same result always :(

    Would be happy to be aware of how this problem... Thank you very much.
    Satellite A100-599
    Current OS: Windpws Vista Home premium sp1.

    Post edited by: Airtoground

    Hey,.

    > but without success.
    Does that mean exactly? You get an error during installation or what exactly is going on?

    > Only safe mode is available after the installation of this driver
    Why only safe mode is available? What happens if you start Windows in normal mode?

    And before you start a lengthy discussion: what laptop do you have?

    You may notice no problem if you install Windows recovery disk Toshiba?

  • Cannot install the driver for Radeon R5 230 graphics card in laptop Lenovo G50-40 with AMD APU A8

    Hello everyone.

    My name is Manu.

    Recently, I bought a laptop computer lenovo G50-40. The specifications are the following:

    8 GB RAM

    1 TB HARD DRIVE

    AMD Quad Core APU A8

    Card Radeon R5 M230 chart with graphic 2 GB memory card

    I installed Windows 8 Enterprise 64 - Bit Edition. The problem that I am facing is that I'm not able to install the drivers for the graphics M230 R5. I've updated the BIOS, tried to download the latest drivers from the Web of AMD site too. Yet, the system is simply not recognize hardware. The screenshot below should give you the image:

    It appears as a video controller. But I can't install the driver even after you use the update driver option. Please help me.

    Concerning

    Mahesh

    Well, what I did downgrade from windows 7.1 and the drivers worked well. I was a bit hesitant on windows 8.1 and there is no upgrade to Windows 8 Enterprise anyway. The games are now place beautifully. Thank you guys.

  • Impossible to install the software for printer AIO C6250

    Whenever I try to install the software for my printer C6250, I get an error message saying "unable to find a specific file" the file is C:\Users\DrAnth-1\Appdata\Local\Temp\7zS5FBE\setup\... \blocksysus.

    I can't find this file on my computer.  The installation stops and I'm back where I started.

    Can someone help me?

    Tony, you updated to Vista? To run the cleaning brush to make sure that we get rid of everything left on the software. Heres how:

    Of the Original installation CD:
    1. Insert the CD in the drive and then cancel Setup
    2. open my computer and click right then on the CD from the drive and select open
    3 open the Util folder
    4 open the CCC folder
    5. If you have an HP computer, run the L3uninstall.exe. If you have a computer not HP, run the L4uninstall.exe
    6. once the uninstall is complete, restart the computer
    7 run the Accessories\ System Tools Disk Cleanup
    8. download and install the latest version of Adobe flash player
    http://www.Adobe.com/support/flashplayer/downloads.html
    9 download drivers and full software features
    http://h10025.www1.HP.com/ewfrf/wc/softwareDownloadIndex?softwareitem=MP-76043-1&cc=us&DLC=en&LC=en&OS=4063&product=3308554&sw_lang=
    10. run the download to reinstall the printer

    If the software has been downloaded and extracted to your system:
    1. type % temp % in the field of race
    2. Locate and open the folder starting with 7z (example: 7zS2356)
    3 open the Util folder
    4 open the CCC folder
    5. If you have an HP computer, run the L3uninstall.exe. If you have a computer not HP, run the L4uninstall.exe
    6. once the uninstall is complete, restart the computer
    7 run the Accessories\ System Tools Disk Cleanup
    8. download and install the latest version of Adobe flash player
    http://www.Adobe.com/support/flashplayer/downloads.html
    9 download drivers and full software features
    http://h10025.www1.HP.com/ewfrf/wc/softwareDownloadIndex?softwareitem=MP-76043-1&cc=us&DLC=en&LC=en&OS=4063&product=3308554&sw_lang=
    10. run the download to reinstall the printer

    Let me know if this solved your problem.

    Thank you!

    Sean

  • 670 error when installing the update for silverlight KB2416427

    Original title: cannot install the update for silverlight KB2416427

    • 670 error cannot install the update for silverlight KB2416427

    Hi ithakiman,

    1. which version of the operating system?

    2. have you tried to install the update manually?

    First try to install the update manually and check.

    See the links to download the update below:

    http://www.Microsoft.com/Silverlight/

    Description of the update for Microsoft Silverlight: 28 September 2010

    http://support.Microsoft.com/kb/2416427

    Also you can post your question in the Silverlight forum for further assistance:

    http://forums.Silverlight.NET/forums/13.aspx

    Hope this information is useful.

    Jeremy K
    Microsoft Answers Support Engineer
    Visit our Microsoft answers feedback Forum and let us know what you think

    If this post can help solve your problem, please click the 'Mark as answer' or 'Useful' at the top of this message. Marking a post as answer, or relatively useful, you help others find the answer more quickly.

  • HP 15r-250tu: cannot install the drivers for the new laptop

    Hi expert, I bought a new laptop from hp 15r-250tu. I installed windows 7 ultimate (64-bit) service Pack 1. Cannot install the drivers for my laptop.i IAM downloaded all the drivers available on the site of hp for this model laptop.i tried to install them in the order as the mentioned error messages, but get that my phone does not support these drivers. Please answer me with links of driver and sequence to install. Thank you.

    Hello:

    Use the W7 x 64 drivers for the HP 250 G2 on your model except file BIOS, firmware, wireless and bluetooth.

    http://h20564.www2.HP.com/hpsc/SWD/public/readIndex?sp4ts.Oid=5449369&swLangOid=8&swEnvOid=4059

    Wireless:

    http://h20565.www2.HP.com/hpsc/SWD/public/detail?sp4ts.Oid=6943827&swItemId=ob_149229_1&swEnvOid=4058

    Bluetooth:

    http://h20565.www2.HP.com/hpsc/SWD/public/detail?swItemId=ob_149791_1

  • I have a galaxy phone and I need to connect it to swap but can't install the certificate on the phone. How can I do this?

    How to install the certificate on android phone

    I have a galaxy phone and I need to connect to exchange but cannot install the certificate on the phone

    Hello

    I suggest you to contact the Galaxy phone holder and check.

    http://www.Samsung.com/us/mobile/cell-phones

  • Error 80070570 code when you try to install the update for Windows Vista for x 64-based systems (KB972145)

    I'm unable to install the update for Windows Vista for x 64-based systems (KB972145).  Whenever I try, I get the error code 80070570.

    0 X 80070570 - ERROR_FILE_CORRUPT
    The file or directory is corrupted and unreadable.

    Perhaps it is the update itself that is corrupted, try to manually download and install the same:
    http://www.Microsoft.com/downloads/en/details.aspx?FamilyId=4633c489-A128-441F-803a-d0623edb5667&displaylang=en

    If this does not work maybe reset - WU
    http://support.Microsoft.com/kb/971058/en-us
    How to reset the Windows Update components?

    Harold Horne / TaurArian [MVP] 2005-2011. The information has been provided * being * with no guarantee or warranty.

Maybe you are looking for

  • Additional harddrive appears on the desktop?

    Yesterday, a hard drive device I have ever seen also displayed on my Mac desktop. The name of it is just a bunch of zeros. Inside there are some files that I recognize at least 2 years ago, but comes from an external drive that I have even more. Anyo

  • HP Pavilion 17-e018sr

    Hello, I bought a HP Pavilion notebook e018sr 17 without a BONE intalled. I tried to install Windows 7, windows 8, Ubuntu 12.04, 13.10 Ubuntu and every time I had a lot of problems. The main question is - when I try to install a Windows operating sys

  • acquisition of mirror images?

    Hello! I just started using a CMOS of Edmund Optics camera (sensor monochrome 1/2 "EO - 1312 m) in a project, so that until now, I used a Logitech Web camera. I had no problems like this before that I presented the new camera. The thing that happens

  • Laptop HP 15 r204ne: upgrading RAM

    It's my first time here so I'm not sure I'm on the right track so bear with me. I bought a * 15 HP notebook PC Energy Star r204ne * just now and now I'm wondering if its possible to upgrade the RAM. I tried to go to the page of user manual/support bu

  • Understand fax failure oregano and corrects the prejudices of the solution or alternatives

    I have problems sending a fax failed after that analyses a number of revenue and then transfer them into a MS Word Document in a Word format. I have some basic questions based on fax trying to figure why faxes fail and how to prevent them from doing.