Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Cisco ASA 5510 SSL cert error Certificate does not contain devices general purpose public key

Hi all, I purchased a SSL cert from Godaddy for my ASA 5510. I followed these instructions:

1. Generate a Certificate Signing Request

ciscoasa(config)# crypto key generate rsa label modulus 2048

ciscoasa(config)# crypto ca trustpoint

ciscoasa(config-ca-trustpoint)# subject-name,OU=IT,O=mycompany,C=CA,St=myprovince,L=mycity

ciscoasa(config-ca-trustpoint)# keypair

ciscoasa(config-ca-trustpoint)# fqdn

ciscoasa(config-ca-trustpoint)# enrollment terminal

ciscoasa(config-ca-trustpoint)# exit

ciscoasa(config)# crypto ca enroll

The Certificate Request is displayed on the terminal which I then copy and paste at

2. Authenticate the Trustpoint

ciscoasa(config)# crypto ca authenticate

I then paste my base 64 encoded CA certificate from

It says:

Trustpoint '' is a subordinate CA and holds a non self-signed certificate.

Trustpoint CA certificate accepted. (Is this ok?)

% Certificate successfully imported

3. Install the Certificate

ciscoasa(config)# crypto ca import certificate

I then paste my base 64 encoded CA certificate from again

I then get the error:

Cannot import certificate - Certificate does not contain devices general purpose public key for trust point mygodaddy.trustpoint ERROR: Failed to parse or verify imported certificate

But when I do a:

ciscoasa(config)# sh crypto key mypubkey rsa

I get:

Key pair was generated at: 12:49:40 EDT Oct 22 2013
Key name:
  Usage: General Purpose Key
  Modulus Size (bits): 2048
  Key Data:

   30820122 300d0609 2a864886 f70d0101 01050003 82010f00 3082010a 02820101


Any help much appreciated


  • Other Security Subjects
This widget could not be displayed.