Create CSR and Install certificate in Cisco ASA Firewall

871

Generate CSR via Cisco ASA CLI Commands

1. Before generating a CSR request, you must create a private key

2. Once the private key is created, you will then need to create a trustpoint for your key. This will allow you to generate the DN information for your new CSR.

3. Provide your CSR attributes to your trustpoint

When you get error like ‘The subject name must be in X.500 (LDAP) format. Check if C has 2 letters area code and not full state name.

4. Specify Key pair that is created in Step 1

5. Specify the COMMON NAME for your certificate request, example vpn.itadminguide.com. You can specify your preferred domain name for AnyConnect.

6. Specify manual enrollment

7. exit

8. Generate CSR, copy and share with the CA or third-party certificate provider such as DigiCert or Entrust.

 

Install SSL Certificate via ASDM

 

Configure WebVPN to use the SSL certificate

 

Troubleshooting

# show crypto ca certificates

# show run ssl

·


Related Articles & Comments

Thank you for visiting us. To continue receiving updates, please Subscribe to our Social Media Channels.

Google+
FACEBOOK
RSS
YOUTUBE
Menu Title
%d bloggers like this: