Bourne

Asked: 2011-04-07 10:09:11 +0800 CST2011-04-07 10:09:11 +0800 CST 2011-04-07 10:09:11 +0800 CST

How do you configure ASA5505 to be its own CA?

What are the correct steps to configuring an ASA5505 to be its own CA without a Microsoft CA being available and giving users the ability to self-enroll?

Specifically, I would like our ASA to use certificates for both VPN and SSL connections and I've managed to configure the Local Certificate Authority via ASDM but I cannot figure out what the URL the ASA uses for users to download their certificates is.

Also, do you need separate key pairs for VPN and SSL? Can you use certificates for SSH connections to the ASA?

Thank you in advance.

1 Answers

Voted

Best Answer

jliendo
2011-04-07T11:02:00+08:002011-04-07T11:02:00+08:00
https://hostname/+CSCOCA+/enroll.html

This document may help:

ASA: Local CA Server configuration
1

How do you configure ASA5505 to be its own CA?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Resolve host name from IP address

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?