I am trying to configure the PIX to use certificates from a MS CA. I have it working fine with ASA5505 and 5510's but when I try to get it working with a PIX 506E and 501 using 6.3 I get the % No CA root cert exists. Use "ca authenticate", message after the ca enroll command.
Can someone give me a heads up on what I might be doing wrong.
ca generate rsa key 512 (and I also tried 1024)
ca identity ciscoserver.nesa.lab 18.104.22.168
ca configure ciscoserver.nesa.lab ca 1 20 crloptional
ca authenticate ciscoserver.nesa.lab
ca enroll ciscoserver.nesa.lab 8EC4CEAD54268142 serial ipaddress
....and that is where the % No CA root cert exists. Use "ca authenticate" shows up.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...