I'm trying to replicate a configuration that was done on my Con3015 to my ASA5520. I was given 2 CA certificate's: A Root and Subordinate and was told to load both or it will not work.
The ASA's use trustpoint configuration. I couldn't load both under one trustpoint so I created two trustpoints.
After loading both CA certificates using file-based enrollment, which trustpoint do I create a PKCS#10 enrollment file against?
Also, I don't understand how both trustpoints are associated. At the end I'd have 2 trustpoints (1 RootCA and 1 SubCA) but only 1 identity will be associate with 1 of the trustpoints.
Is it necessary to add specific commands in the trustpoint configuration?
Is it even necessary to have both CA certificates (Root and Sub CA) installed??