Hi again Jason

I answered this same thing before for someone else here is the conversation link:

http://forum.cisco.com/eforum/servlet/NetProf?page=netprof&forum=Security&topic=Firewalling&CommCmd=MB%3Fcmd%3Dpass_through%26location%3Doutline%40%5E1%40%40.1dda1e4d

Here is the actual answer:

Certificates are a method of Authentication and Verification. When you recieve a certificate from a website it is signed with the hostname and domain name. If that hostname and domain name combination is not what you have typed into your browser, your browser questions the authenticity of that certificate.

To make your issues go away about connecting to your pix you would have to add a dns record or at least a host record on your hosts table specifying the same website as in the certificate your pix is issues. Example.

The hostname of my pix might be pix, where as your domain might me somewhere.com You would then type this into your web browser as https://pix.somewhere.com

To setup your pix to use the above info use the following commands

hostname pix

domain-name somewhere.com

ca zeroize rsa

ca generate rsa key 1024

ca save all

This would then recreate an rsa cert that is signed using the pix.somewhere.com host and domain name.

So now either you would add pix.somewhere.com to your dns or add it in your locl pc's hosts file associated to the appropriate ip address and then you should be able to connect to your PDM using pix.somewhere.com and not get the annoyance anymore.

Hope this helps.

Patrick