Should ASA 5520 have SSL certs "visible" on the outside?

Unanswered Question
Feb 22nd, 2008
User Badges:

Hi, I have a Cisco ASA 5520, I have ran a penetration scan against it's outside IP and it came back with 2 problems about Self SSL certificates, do I need to have these exposed or can I turn them off?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
didyap Thu, 02/28/2008 - 10:09
User Badges:
  • Silver, 250 points or more

The SSL certificates should be visible to the outside so that clients can connect after validating the certificate. You need not to turn them off.

jamesgonzo Thu, 02/28/2008 - 10:57
User Badges:

I turned off the ASDM on the outside interface and bingo!

Actions

This Discussion