06-03-2009 12:00 AM - edited 03-11-2019 08:39 AM
Hi,
Does anyone know if it possible to export a security certificate from one set of ASA's to another? And how this might be done?
From the documentation I haven't seen anything about this. From experience you need a CSR to which you then add the certificate which is validated against a trustpoint. If there is no CSR on the 2nd set of ASA's then no cert can be imported?
Regards
06-03-2009 12:50 AM
Found the following in "Cisco Security Appliance Command Line Configuration Guide, Version 8.0" on Cisco Documentation:
"You can export and import the keypair and issued certificates associated with a trustpoint in PKCS12 format. This is useful if you wish to manually duplicate a trustpoint configuration on a different security appliance."
There are also sections describing how to do it.
Regards
06-03-2009 08:01 AM
CLI:
http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/cert_cfg.html#wp1058415
ASDM:
Via ASDM you can export/import a trustpoint via the Configuration->Remote Access VPN->Certificate Management->Identity Certificates. Alternatively, you can use the ASDM 6.1 backup and restore tool to backup certificates.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide