We have an ASA that configured as SSL portal. It has VeriSign as CA. I am wondering how the keys work.
My understanding is that, ASA sends its certificates with its public key to VeriSign. VeriSign then sends it to the user and encrypted with its private key. When the user gets it, it uses VeriSign’s public key to decrypt it and gets ASA’s public key.
The opposite happens and ASA gets user’s public key.
From then on, user and SSL start to communicate.
Is my understanding right?