OpenSSL with 'Cisco VCS Certificate Creation and use - deployment guide. "

Hi team,

To prevent users to log on with the VCS Highway, we want to use OpenSSL (version: 1.0.1p 9 julio 2015), but I am facing the following problem:

1 - I can't implement the command "touch index.txt".

2 - I can´t implement the command "openssl genrsa-aes256-out private/cakey.pem 4096"; and when I apply these commands I get "OpenSSL is not recognized.

I did all the steps that says "VCS certificate creation and use Cisco".

What could be the matter?

Thanks for your advice.

Kind regards



Already explained why touch does not, simply create the .txt through windows command file.

Tags: Cisco Support

Similar Questions

  • The document has been changed since its creation and use of the extended functionality is no longer available

    I have Adobe Acrobat Reader DC 2015.016.20039 on my system. I filled a form using Foxit Reader. When I tried to open the form with Adobe Acrobat Reader DC I received the error "the document enabled extended in Adobe Acrobat Reader DC features. The document has been changed since its creation and use of the extended functionality is no longer available. Please contact the author for the original version of this document.

    I tried other PDF programs, no problem at the opening of this form.


    Function "Activation reader" comes from the original shape, and it's essentially a digital signature. It is specific for the free product of Viewer PDF by Adobe (aka Adobe (Acrobat) Reader).

    The problem is that only Adobe products are able to (re) make these documents without breaking the seal of the digital signature.

    So, what happened in your case is the Foxit Viewer broke the seal during the recording of back and what's. Using Acrobat, you can save a copy of the form, and then continue will fill. Otherwise, you will be better off to start over, but stay with viewers Adobe PDF all the time, working with the form, or with a different Viewer, once again all the time you work with the shape.

    BTW, player XI and most recent no. have more need of extended for more rights blocked by previous versions of Reader. This is not enough in this case; only, it would be useful for the sender of the form.

    Update (after rereading of the original message): if it's just for viewing or print the form, you can ignore this message. You can also try to save just, you have a version of player who no longer has the rights extended (at your risk).

    I hope this can help.

  • Configure the router WRT54G with the PUBLIC IP address and use the DHCP protocol for internal computers


    I have a service online Internet with 5 public IP addresses.

    The router and the AP are connected to a switch.

    I would like to set up a WRT54G Router with a public IP address and use DHCP (with private ip address) for the computers that will connect to the AP.

    That the AP is connected to the switch, it is possible that the other wired computers that are connected to the same switch can get an IP from the DHCP?

    Thanks in advance

    In this case, the routing is automatic.

    WRT54G configuration:


    Internet connection: static IP address

    IP address: 180.X. X 170

    Subnet mask:

    Gateway: 180.x.x.x (Ex: 180.x.x.1)

    DNS: servers your ISP DNS


    The IP address of the router:

    DHCP range: of-online

  • Ideas to explain why, when you work with raw files in LR 2015 with Edit in PS 2015 and use the Camera Raw filter, the profile in the Lens Correction Panel tab is missing

    Ideas to explain why, when you work with raw files in LR 2015 with Edit in PS 2015 and use the Camera Raw filter, the profile in the Lens Correction Panel tab is missing? Mac OS X 10.10.5.  I reinstalled the OS and Lightroom and PS, nothing helps.

    Hi ParadigmRose,

    This is expected as profile tab behavior does not appear under Lens Correction Panel if you go to Camera Raw Filter in Photoshop

    However, profile tab would be there if you open a raw image directly in camera raw first.

    You can go to the filter menu > Lens correction in Photoshop, if you want to search for profiles with edit in Photoshop.

    Kind regards


  • I'm 7 days in LR to the trial. After creation and 'use' to develop to edit 6 catalogues, I find without changing this or that all catalogs when opening, now have a bright red nail in different areas of the photos in the catalog. Some of the

    I'm 7 days in LR to the trial. After creation and 'use' to develop to edit 6 catalogues, I find without changing this or that all catalogs when opening, now have a bright red nail in different areas of the photos in the catalog. Some of the catalogues have been created several days ago and were considered OK, but now this 'red' hue appeared in all the catalogues without any intervention by me.

    I don't know why you create several different catalogs. Lightroom is managed much more efficiently using a single catalog. But regardless of this issue, it seems that if you have enabled clipping indicators. Pressing the J button makes the point high and indicators on shadow clipping or out of service. Or you can click on the small square in the upper corners of the histogram. Clicking the square to the left turns clipping shadow power. Clicking the square to the right will turn point highlight clipping power. I leave switched indicators so that I can identify areas that need to be adjusted so that I can eliminate all clipping.

  • AnyConnect + possible PSK (pre-shared key) as under with cisco vpn client ikev1 and ikev2

    Is it possible to create a VPN Anyconnect of RA with just the name of user and password + pre-shared key (Group) for the connection, as could do for ikev1 with cisco VPN client? I am running 8.4.X ASA code and looks like tunnel-group commands have 8.2.X somewhat change. If you change the group type of the tunnel for remote access, now there is no option for IKEv2 PSK. This is only available when you choose the type

    Type of TG_TEST FW1 (config) # tunnel - group?

    set up the mode commands/options:
    Site IPSec IPSec-l2l group
    Remote access using IPSec-IPSec-ra (DEPRECATED) group
    remote access remote access (IPSec and WebVPN) group

    FW1(config-tunnel-General) # tunnel - group TG_TEST ipsec-attributes
    FW1(config-tunnel-IPSec) #?

    configuration of the tunnel-group commands:
    any required authorization request users to allow successfully in order to
    Connect (DEPRECATED)
    Allow chain issuing of the certificate
    output attribute tunnel-group IPSec configuration
    help help for group orders of tunnel configuration
    IKEv1 configure IKEv1
    ISAKMP policy configure ISAKMP
    not to remove a pair of attribute value
    by the peer-id-validate Validate identity of the peer using the peer
    negotiation to Enable password update in RADIUS RADIUS with expiry
    authentication (DEPRECATED)

    FW1(config-tunnel-IPSec) # ikev1?

    the tunnel-group-ipsec mode commands/options:
    pre-shared key associate a key shared in advance with the connection policy

    I'm getting old so I hope that it is not in another complaint curmudgeonly on the loss of functionality. :)

    Many small businesses do not want to invest in the PKI. It is usually a pain to deploy, backup, make redundant, etc..

    But it would be nice to have a bit more security on VPN other than just the connections of username and password.

    If this is not possible, it is possible to configure the Anyconnect customer to IKEv1 with PSK and name at the level of the Group client?

    If this is not possible, WTH did cisco end customer VPN cisco as a choice of VPN connection (other than to get more fresh mail of license)?

    I really hope that something like this exists still!



    You are welcome

    In addition to two factors, you can also do double authentication (ie the two using the user name and password). Each set of credentials can come from a Bank of different identities.

    With this scheme, you can can configure a local user name (common) with password on the SAA (think of it as your analog PSK) and the other be the AD user identification information.

  • Cisco VCS X6.1 and MS Lync 2010 over TLS

    Hi all!

    I have a problem of integration CiscoVCS (X6.1) and Lync 2010.

    I couldn't configure control VCS to Lync connection over TLS, but I've done with TCP.

    If I try to TLS, there is detail = "bad packet length", event = 'Outbound TLS negotiation Error' records in the control of VCS event log.

    The VCS and Lync certificates are of the same CA approved with their FQDNs as object names and the VCS and complete Lync with EDCS are in the DNS system. Of course, VCS and complete Lync, what subjects of certificates, used in VCS approved area and host of destination trust app Lync.

    Calls for VCS is the intellectual property of the EFF Lync. We use no HLB and administration. Also, VCS is autonomous, without any load balancers or clustering.

    Lync signaling is done, but as I see it, VCS cannot send the data back.

    Lync is on Server 2008 R2 x 64

    Thanks for your suggestions!

    In reflection of the c20 position, what image software do you run on the VCS?


    s42700x6_1_0.tar.gz     21-Apr-2011 12:39  266M

    or without:
    s42701x6_1_0.tar.gz     21-Apr-2011 12:43  266M


  • Recovery and rescue deployment guide

    On the next page of download

    There is pdf guides depolyment version 3.01 to 4.3 but for version 4.51, a zipfile ( When I download this file and examine it I find a lot of executable files with names like cleanmbr.exe and cleandrv.exe scarry. (See the list of the contents of the file zip below)

    Can you get it someone please tell me where the deployment or the documentation guide in this file?

    Directory of z938zdeploymentguide045us00 (1)

    17/01/2014 16:05

    17/01/2014 16:05 ...
    16/01/2014 06:28 ADMwiz
    16/01/2014 the 12 335 cleandrv.exe 06:28
    16/01/2014 cleanmbr.exe 12 247 06:28
    16/01/2014 cleanmbr32.exe 36 864 06:28
    16/01/2014 the 24 576 convdate.exe 06:28
    16/01/2014 createsp.exe 458 752 06:28
    17/01/2014 16:05 files.txt 0
    16/01/2014 rnr.adm 357 156 06:28
    16/01/2014 rnrDeploy.xml 91 497 06:28
    16/01/2014 rnrDeploy.xsd 150 505 06:28
    16/01/2014 rnrTable.csv 180 520 06:28
    16/01/2014 rrutil.exe 307 200 06:28
    16/01/2014 sp.pqi 655 360 06:28
    16/01/2014 tvtutilspy.dll 348 160 06:28

    Directory of z938zdeploymentguide045us00 (1) \ADMwiz

    16/01/2014 06:28

    16/01/2014 06:28 ...
    16/01/2014 AWIZARD.exe 282 624 06:28
    16/01/2014 help 06:28
    16/01/2014 06:28 model

    Directory of z938zdeploymentguide045us00 (1) \ADMwiz\help

    16/01/2014 06:28

    16/01/2014 06:28 ...
    16/01/2014 antidote.chm 45 954 06:28
    16/01/2014 the 2 546 Applicat.htm 06:28
    16/01/2014 Creatkey.htm 2 951 06:28
    16/01/2014 Cretask.htm 3 235 06:28
    16/01/2014 Encryptky.htm 2 774 06:28
    16/01/2014 Gorrs.htm 18:28
    16/01/2014 intro.htm 2 629 06:28
    16/01/2014 legal.htm 5 655 06:28
    16/01/2014 Network.htm 2 743 06:28
    16/01/2014 proc.htm 2 416 06:28
    16/01/2014 Registry.htm 2 725 06:28
    16/01/2014 System.htm 2 631 06:28

    Directory of z938zdeploymentguide045us00 (1) \ADMwiz\template

    16/01/2014 06:28

    16/01/2014 06:28 ...
    16/01/2014 Awizard.tmp 5 806 06:28

    Finally someone at Lenovo has received the message and they have mounted a rescue and Recovery for R & R 4.5 Deployment Guide

  • Authentication PEAP with Cisco ACS 5.3 and Lotus Notes DB


    I want to authenticate clients wireless against the name of user/passwords stored in a lotus notes database.

    Network: PEAP SSID-> Accesspoint-> controller-> ACS 5.3 WLAN 4404-> Notes DB

    Is this possible?

    I can connect to the attributes and ldap groups and query. but when I try to authenticate a user, I always get an error "object not found in the identity store.

    Bind test succeeds (> 100 groups and > 100 subjects.)

    EAP MSCHAP v2 is not taken in charge with LDAP by ACS

    You can use EAP GTC

    You should a begging utility that supports PEAP (EAP-GTC)

    such as ADU, Intel Proset, CSSC Cisco AnyConnect,... you can google for a list of applicants

    Open the new thread for cause of Apple


    Be sure to note the correct answers and report this thread as answered

  • NSX design with cisco UCS/fabric interconnects and Nexus switches

    Hi Experts

    I am new to NSX design and deployment and working on a project. We deploy NSX for applications of level 4 (web, app, db, DC). I use logic, DLR, ESG and DFW switches. I next we intend to use roads static confusion..

    1. do we cover all the VLAN from the virtual to the physical environment? for example mgmt VLAN, level vlans(web,app,db), vxlan transport vlan or it should be only a VLAN specific?  which means would be I have set all the VLANS in environment NSX in my physical switching environment?

    2 vds? don't we create not only 1 vds initially during the deployment of vcenter or more? Should we take any special consideration while deploying to the deployment of the NSX?

    3 static routes - we configure static routes on the DLR and the GSS? Should I use the default routes upstream? on the physical router should we be routing all subnets from virtual environment to the GSS.

    4. where and who should create virtual machines? Via vCenter or before the deployment of the nsx NSX?

    5. we have a level of domain controller. Should it be part of 3 or separate applications with allow any any rule on DFW?

    Thank you


    (1) the VLANs which exist for physical Machines span the logical switch VXLAN NSX in the following cases:

    • If the current deployment there are physical Machines in the same Vlan and subnet IP with Virtual Machines. If this common Port Vlan group is migrated to a switch logic VXLAN Backed port group and not possible to change the IP addresses of the virtual machines, and then a bridge DLR (Distributed logical router) works as the conversion between Vlan physical and virtual VXLAN
    • If Conversion of P-to-V of the physical Machines continue on this Vlan

    VLAN which cover only the virtual machines or virtual local networks which cover only physical Machines must not be delayed.

    (2) for the deployment of the NSX, there may be more than 1 dVS or only 1 vDS according to the design. There may be another type of traffic other VXLAN base of virtual machines such as backup, storage, VMotion and the overall design, management, best practices apply here as well.  A requirement of the NSX is a common VDS that spans the entire Cluster. For each Cluster, this "common VDS' may be different. Yet once this VDS maybe a separate VDS dedicated VTEP or VTEP features functionality can be added to the existing VDS. It may be best to separate the VTEP vDS.

    (3) for the DLR, a default gateway is usually sufficient. If static routes are used, the GSS must then drive by default upstream and the static routes with the next hop of the DLR downstream for the subnets in the subnets IP VM logical switch. On the physical router static route to the VM, but also DLR - ESG logical subnets Subnet switch is required. Management of static routes is easier if route summarization is possible, or if necessary, close to the IP subnets, so it may be a good idea to use the dynamic routing such as Ospf or BGP protocol. There are also features of IP address management in Vrealize and other IPAM solutions if Automation is necessary for large and dynamic environments.

    (4) NSX has no functionality in the creation of the VM, it only creates Services network such as switches, routers, Firewalls, Load Balancing. The creation of the part VM continiues the same way as before. A point to note is maybe the logic is created appear as VXLAN named port groups on the VDS. NSX Manager creates groups of ports on the VDS, the only difference is that the name includes VXLAN. The virtual machine is like before added to this group of VXLAN Backed Port settings, or added to the logical switch from NSX Manager interface that appears again as a Plugin for VCenter. VCENTER is so point to create virtual machines and add these VMs to the logic is.

    (5) level of domain controller can be a separate layer, or other third party, may be preferable to upgrade separated except 3 applications. Usually, it's the same design without NSX. dFW rules can help protect the domain controller with allowing only ports of the virtual machine or physical Machines being admitted. dFW rules can apply to VXLAN based logical switches NSX so that VLAN based DVS Port groups because it's the kernel module.

  • UDF creation and use for self-service requests

    Hi all

    I am currently using OIM 11 g ( and I had a feature working before, but now I can't remember what I did to make it work...

    I created two fields that are defined by the user and authorization policies associated with them so that I can view (at least since the creation of the direct user via Xelsysadm). I can't, however, view these attributes in a self-service basis 'Create User' or 'Edit user' for the life of me.

    My ultimate goal is to be able to see these attributes on forms (direct creation of the user, creating self-service user) and ultimate make both required (via changing the CreateUserDataset.xml in metadata).

    When I run WeblogicExportMetadata.bat, I get off the elements of the IOM, but attributes that are not visible on the self-service application dataset are not the CreateUserDataset.xml (which is a given). How to enable these attributes to be on this form?

    Also, should what xml metadata I change so that my custom attribute is required on the direct creation page in the administration console?

    Thanks in advance!

    Can you post your dataset xmls here so that we can check.


  • integration of lync 2013 with cisco vcs - c


    I found a lot of documentation on integrating to Lync 2010 with VCS - C, but can't find much on the integration of Lync 2013.  Could someone shine some light on this for me?
    Thank you!

    Hi, David,.

    It would be preferable that you contacted Cisco re: integration

    Cisco PDF

    Or try to repost your question to the TechNet Forum

  • Why has long lead times of creation and use of titles?

    I use Adobe CC body. When I create a title, it takes maybe 10 seconds to load the module of titration. When I preview the video, the image is often frozen for a few seconds, then displays. What could be the cause of the delays? What is the 'power' of the video card?


    Something is not right with your system, even if I really know what.  Nothing is permanent as a plausible explanation here.

    The best estimate I have at this point is your CPU.  It has integrated graphics, and there have been problems in the past when using such a processor.  The ideal is an Intel CPU without built-in graphics combined with an nVidia GPU.  I'm a bit skeptical, it's actually the cause here, but... it's the only thing I can see that could be 'wrong' (so to speak).

  • creation and use of sequence within a proc

    Hi the gems... Good afternoon...

    I know that we can create a sequence inside a proc. That I created, but when you use this sequence in the same process, it gave me error:
      2  L_LINE VARCHAR2(1000);
      3  BEGIN
      5  FOR I IN 1..1000
      6  LOOP
      8  DBMS_OUTPUT.put_line(L_LINE);
      9  END LOOP;
     10  END;
     11  /
    ORA-06550: line 8, column 28:
    PLS-00201: identifier 'SANDY_SEQ.NEXTVAL' must be declared
    ORA-06550: line 8, column 1:
    PL/SQL: Statement ignored
    I grant this user the CREATE SEQUENCE.

    Cant, we use the same sequence in the proc where it was created.

    Help, please... Thanks in advance.

    Published by: gogol on August 21, 2012 03:00

    If you create a sequence dynamically, you must also select dynamically.

      L_LINE VARCHAR2(1000);
       v_number number;
     FOR I IN 1..1000
    execute immediate 'select sandy_seq.nextval from dual' into v_number;
     L_LINE:='HI, I AM NUMBER '||v_number;
      END LOOP;

    Published by: Keith Jamieson on August 21, 2012 11:02

  • Creation and use of buttons in InDesign - help!

    InDesign CS5 (V7.0.3), Mac 10.6.8

    I have a 23 page InDesign document. At the bottom left corner, I have a button to go to the previous page, in the Middle at the bottom I have a button to access the table of contents on page 2, bottom right I have a button to go to the next page. I export to PDF (interactive). When I open the PDF for the go to the next Page is located in the middle of the document and pass it to the Table of contents is at halfway off left hand side of the document (the go to the previous Page is not visible). Any thoughts?

    Screen shot 2011-09-06 at 9.13.20 AM.pngScreen shot 2011-09-06 at 9.13.39 AM.png

    Try to restore your preferences:

Maybe you are looking for