Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

ASA view user certificates expiry date

Hello!

There is ASA with remote access VPN and users are authenticated using third party signed certificates (CA is not local in ASA).

When user certificate expires i can see it in syslog messages. For example:

     %ASA-3-717009: Certificate validation failed. Certificate date is out-of-range, serial number: (...)

I would like to know if there is an opportunity to view user's certificate expiry date beforehand, say, 3 days before?

Thank you!

Everyone's tags (2)
1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

ASA view user certificates expiry date

Hi Oleg,

the user should get a warning when his certificate is about to expire, but on the ASA you cannot detect this, sorry.

hth

Herbert

3 REPLIES
Cisco Employee

ASA view user certificates expiry date

Hi Oleg,

the user should get a warning when his certificate is about to expire, but on the ASA you cannot detect this, sorry.

hth

Herbert

New Member

ASA view user certificates expiry date

Hi Herbert!

Thank you!

Cisco Employee

ASA view user certificates expiry date

The following enhancement requests have been filed for this though:

CSCeh73797, CSCsk86689, CSCsy90223. If you have a cisco accounts team you should follow up with them regarding these enhancements.

2289
Views
0
Helpful
3
Replies