Can anyone tell me whether rel.6.0 of MARS Local Controller will allow me to use my own CA-generated SSL certificates ? I'd like to use (and it's also company policy) a trusted CA for server certificates. I know it can't be done on rel.4.3.
To support the certificate management features in MARS, the following system inspection rule exists:
System Rule: CS-MARS Failure Saving Certificates/Fingerprints. This inspection rule indicates that MARS has failed to save a new or changed device SSL certificate or SSH key fingerprint based on either explicit user action or automatic accept as specified on the SSL/SSH Settings page.
In addition, the following reports appear under the System: CS-MARS Issue category.
Activity: CS-MARS Accepted New Certificates/Fingerprints
I don't think so, the most you can do is generate a new self-signed cert. doh! just noticed you said 6.x. You can't do it in 5.x. The most I can say about 6.x is that I've not seen anything documented about being able to do it.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...