cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
468
Views
0
Helpful
1
Replies

SSL Certificate will expire in 27 days

dianewalker
Level 1
Level 1

We have a VPN 3005 Concentrator. We got an email notification "SSL certificate will expire in 27 daysIssuer. CN=XXX.XXX.XXX.XXX,O=Cisco Systems, Inc.,L=Franklin,ST=Massachusetts,C=US,OU=VPN 3...Subject: CN=XXX.XXX.XXX.XXX,O=Cisco Systems,Inc.,L=Franklin,ST=Massachusetts,C=US,OU=VPN 3... Expiration Date: 05/31/2008"

Do you have any suggestions on how to fix this problem?

Thanks.

1 Accepted Solution

Accepted Solutions

JORGE RODRIGUEZ
Level 10
Level 10

This applies to https management access to your vpn concentrator, you can have the concentrator self create a new certificate and install it in your pc that access the vpn for management, but you can uncheck client authentication which is default vpn concentrator thus not requiering certificate checks for network administrators accessing the device via ssl with certificate for client verification. The link bellow explains it and your question is there.

Your concentrator probably have checked client authentication. Again, you can uncheck that and not go through certificate management or recreate a new certificate and go through the process of managing and regenerating new certificates when they expire.

on concentrator you need to go to :

configuration/system/management protocols/ssl

See Q&A on your question

http://www.cisco.com/en/US/products/hw/vpndevc/ps2284/products_qanda_item09186a0080094cf4.shtml

HTH

Rgds

Jorge

Jorge Rodriguez

View solution in original post

1 Reply 1

JORGE RODRIGUEZ
Level 10
Level 10

This applies to https management access to your vpn concentrator, you can have the concentrator self create a new certificate and install it in your pc that access the vpn for management, but you can uncheck client authentication which is default vpn concentrator thus not requiering certificate checks for network administrators accessing the device via ssl with certificate for client verification. The link bellow explains it and your question is there.

Your concentrator probably have checked client authentication. Again, you can uncheck that and not go through certificate management or recreate a new certificate and go through the process of managing and regenerating new certificates when they expire.

on concentrator you need to go to :

configuration/system/management protocols/ssl

See Q&A on your question

http://www.cisco.com/en/US/products/hw/vpndevc/ps2284/products_qanda_item09186a0080094cf4.shtml

HTH

Rgds

Jorge

Jorge Rodriguez
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: