Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Backend Encryption with SSL module & Self Signed Cert

I am trying to configure backend encryption using the SSL module to communicate with a server using a self signed certificate. I configured Authenticate verify none. I have not copied any cert info from the server. Do I need to? The SSL module is complaining about an invalid cert. My config is basic.

service test-service-cf8-be client

virtual ipaddr 10.6.1.20 protocol tcp port 80

server ipaddr 10.6.1.22 protocol tcp port 443

log-auth-failures

authenticate verify none

inservice

Thanks,

Dave

2 REPLIES
Cisco Employee

Re: Backend Encryption with SSL module & Self Signed Cert

If you do backend ssl, the authentication is done by the server - not SSLM.

Is your service up ?

show service ...

Gilles.

New Member

Re: Backend Encryption with SSL module & Self Signed Cert

Yes it was up and a debug showed an invalid cert message when the service was hit. The answer turned out to be that you still need to import the root CA from the server so that the SSL mod has something to verify the cert against.

Thanks..

128
Views
0
Helpful
2
Replies
CreatePlease to create content