https certificate on WAAS Central Manager

Answered Question
Jun 24th, 2009

Hi,

I wanting to know if it is possible to authenticate the WAAS central manager with a different certificate/key pair than the self-signed certificate/key pair.

I can't find any information about installing my own certificate/key pair.

Thanks in advance

I have this problem too.
0 votes
Correct Answer by dstolt about 7 years 6 months ago

Hey Carl,

Unfortunitely, this is not available for the CM at this time. This is an interesting enhancement request, however.

Thanks,

Dan

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
dstolt Fri, 06/26/2009 - 08:46

Hey Carl,

Unfortunitely, this is not available for the CM at this time. This is an interesting enhancement request, however.

Thanks,

Dan

CARL HEMMINGSEN Sun, 06/28/2009 - 12:20

Thanks Dan,

It's a fairly standard feature with Cisco management tools that support https, so I'm a little surprised it's not available.

Thanks for the update.

Edward Clear Wed, 05/09/2012 - 11:01

Has there been any movement on adding this capability?   It seems like this shouldn't be much of a stretch with the SSL and PKI capability already in WAAS.

We're getting more heat from the internal security scanners who are red flagging self-signed certs for HTTPS, so it's not an academic question.

Vincent Fortrat Mon, 10/28/2013 - 09:24

Hello,

I'd like to know if there is any update on this. I'm currently running release 5.3.1 on WAAS central-manager and I'd like to install a PKI signed certificate to secure the GUI sessions.

I see that there is a "SSL Admin Service" item under Security menu but it isn't mentionned anywhere in the documentation...

Thanks,

Vincent

Swati Chopra Mon, 11/25/2013 - 14:25

We do have an option for the same:

First you may generate a CSR using:

http://www.cisco.com/en/US/docs/app_ntwk_services/waas/waas/v531/command/reference/execmds.html#wp2773266

Once done you can get the cert and import cert and keys on Central Manager using admin option

http://www.cisco.com/en/US/docs/app_ntwk_services/waas/waas/v531/command/reference/execmds.html#wp2773369

"admin"

Specifies that the certificate and key are for the Central Manager admin service. This option can be used only on the Central Manager.

The Central Manager admin service uses a self-signed certificate and key by default. You can use the crypto import pkcs12 admin command to import a custom certificate and key in PKCS12 or PEM format. If you delete the custom certificate and key, the self-signed certificate and key again become active.

Hope this helps,

Swati

Actions

This Discussion