Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
322
Views
0
Helpful
2
Replies

Backend Encryption with SSL module & Self Signed Cert

carlsond
Level 1
Level 1

‎02-19-2009 01:32 PM

I am trying to configure backend encryption using the SSL module to communicate with a server using a self signed certificate. I configured Authenticate verify none. I have not copied any cert info from the server. Do I need to? The SSL module is complaining about an invalid cert. My config is basic.

service test-service-cf8-be client

virtual ipaddr 10.6.1.20 protocol tcp port 80

server ipaddr 10.6.1.22 protocol tcp port 443

log-auth-failures

authenticate verify none

inservice

Thanks,

Dave

Labels:
0 Helpful
2 Replies 2

Gilles Dufour
Cisco Employee
Cisco Employee

‎02-25-2009 01:33 AM

If you do backend ssl, the authentication is done by the server - not SSLM.

Is your service up ?

show service ...

Gilles.

0 Helpful

carlsond
Level 1
Level 1
In response to Gilles Dufour

‎02-25-2009 04:03 AM

Yes it was up and a debug showed an invalid cert message when the service was hit. The answer turned out to be that you still need to import the root CA from the server so that the SSL mod has something to verify the cert against.

Thanks..

0 Helpful
Customers Also Viewed These Support Documents