01-30-2012 11:30 PM - edited 03-10-2019 06:46 PM
Hello!
There is ASA with remote access VPN and users are authenticated using third party signed certificates (CA is not local in ASA).
When user certificate expires i can see it in syslog messages. For example:
%ASA-3-717009: Certificate validation failed. Certificate date is out-of-range, serial number: (...)
I would like to know if there is an opportunity to view user's certificate expiry date beforehand, say, 3 days before?
Thank you!
Solved! Go to Solution.
02-07-2012 05:19 AM
Hi Oleg,
the user should get a warning when his certificate is about to expire, but on the ASA you cannot detect this, sorry.
hth
Herbert
02-07-2012 05:19 AM
Hi Oleg,
the user should get a warning when his certificate is about to expire, but on the ASA you cannot detect this, sorry.
hth
Herbert
02-20-2012 09:43 PM
Hi Herbert!
Thank you!
07-17-2012 07:59 PM
The following enhancement requests have been filed for this though:
CSCeh73797, CSCsk86689, CSCsy90223. If you have a cisco accounts team you should follow up with them regarding these enhancements.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: