Enroll Cert fails on IOS 12.4 from cisco pc client. What other products?
I've been really struggling with the pc certificate request/enrollment trying various versions of Cisco VPN CLient 4.6,4.8,5.0. I've tried every combination of scep and/or file binary/file base 64 without any promise of avoiding errors all leading me to believe a bad certificate was created.
I'm using Cisco's IOS 12.4(13b) as CA server and have tried to connect to both RA and CA.
Common enrollment error at router IOS:
Aug 2 16:10:10.910: CRYPTO_CS: received an enrollment request
Aug 2 16:10:10.918: E ../cert-c/source/certobj.c(691) : Error #705h
Aug 2 16:10:10.918: CRYPTO_CS: failed to set the cert object
Aug 2 16:10:21.888: CRYPTO_CS: Granting enrollment request 15
Aug 2 16:10:21.892: CRYPTO_CS: added CDP extension
Aug 2 16:10:21.892: CRYPTO_CS: added key usage extension
Aug 2 16:10:22.809: CRYPTO_CS: serial number 0x10 written.
Aug 2 16:10:22.914: CRYPTO_CS: reqID=15 granted, fingerprint=8D150C0D95F736A76D
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...