SSLM Certficates multiple vendors

Answered Question
Mar 25th, 2010
User Badges:

HI


      We are using around 50  Verisign Certificates installed  in the Cisco SSLM module .  Now we plan to have a new contract with another vendor Global Sign here onwards. I would like to know if it possible to use more than one Vendors( Verisign, Global Sign )  certificate chains installed in the same module. Ou plan is that old certificates from Verisign will be functioning as it is and new certificates will be issued by  Global Sign and will be installed in the same module,  When Old cerificates expires the same wil be removed and will be newly created from Global Sign and will be installed



Thanks in advance for your comments


SSLM#sh version

Cisco IOS Software, SVCSSL Software (SVCSSL-K9Y9-M), Version 12.3(8)IA  RELEASE SOFTWARE \nCopyright (c) 1986-2008 by Cisco Systems, Inc.

Compiled Fri 11-Jul-08 13:52 by integ

ROM: System Bootstrap, Version 12.2(11)YS1 RELEASE SOFTWARE


Regards'


Jithesh

Correct Answer by Pablo about 7 years 3 months ago

Hi Jitesh,


You will not have any problem installing new certificates from a different vendor, the SSLM accepts any certificate regardless of the vendor who signed your CSR.


As long as the new certificate is 1024 or 2048 bits of encryption and the cert chain is installed correctly for each trustpoint you should be ok.


Hope this helps.


Pablo

Cisco TAC

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Pablo Thu, 03/25/2010 - 21:48
User Badges:
  • Cisco Employee,

Hi Jitesh,


You will not have any problem installing new certificates from a different vendor, the SSLM accepts any certificate regardless of the vendor who signed your CSR.


As long as the new certificate is 1024 or 2048 bits of encryption and the cert chain is installed correctly for each trustpoint you should be ok.


Hope this helps.


Pablo

Cisco TAC

Jithesh K Joy Fri, 03/26/2010 - 00:35
User Badges:

Hi Pablo,


            Thanks for your answer. Could you plz provide me the URL for the bug related to SSLM


Regards


Jithesh

Actions

This Discussion