Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
374
Views
0
Helpful
1
Replies

ASA7.0(2) CA Trustpoint Configuration with Root and Subordinate CA

aignacio
Level 1
Level 1

‎01-25-2006 02:27 PM - edited ‎03-09-2019 01:44 PM

I'm trying to replicate a configuration that was done on my Con3015 to my ASA5520. I was given 2 CA certificate's: A Root and Subordinate and was told to load both or it will not work.

The ASA's use trustpoint configuration. I couldn't load both under one trustpoint so I created two trustpoints.

After loading both CA certificates using file-based enrollment, which trustpoint do I create a PKCS#10 enrollment file against?

Also, I don't understand how both trustpoints are associated. At the end I'd have 2 trustpoints (1 RootCA and 1 SubCA) but only 1 identity will be associate with 1 of the trustpoints.

Is it necessary to add specific commands in the trustpoint configuration?

Is it even necessary to have both CA certificates (Root and Sub CA) installed??

Labels:
0 Helpful
1 Reply 1

dogany
Level 1
Level 1

‎04-19-2007 12:19 AM

Hello Aignacio,

I have the same problem now. Did you find an solution. If yes could you please send me the prosedure for migrate from 3015 to asa in terms of ca config

Thanks

Dogan

0 Helpful
Customers Also Viewed These Support Documents