Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

PIX PDM don't work with certificates

Hi,

I'm working with this scenario:

PIX 506e with IOS 6.3.3 and PIX 501 with IOS 6.3.1

RSA Special Keys with 1024 bit size

3DES AES License

PIX PDM 3.0.1

Microsoft Windows 2000 server English with service pack4

Microsoft CA witch SCEP

Microsoft Windows XP Client English Servide Pack 1 with Internet Explorer 6.

I can open PIX PDM in my browser perfectly; then, I make PIX CA enrollment config:

ca generate rsa special 1024

ca identity ca_name ca_ip_address://certsrv/mscep/mscep.dll

ca configure ca_name ra 1 20 crloptional

ca authenticate ca_name

ca enroll ca_name “challenge_password”

ca save all

write mem

CA issue certificates to PIX.

Then, I try to open PIX PDM again, and it doesn't works. Nothing appears in my browser, only "page not found" message.

PIX CLI debug crypto CA offers this output:

CRYPTO_CA: certificate not found

What I'm doing wrong?

THK

1 REPLY
Silver

Re: PIX PDM don't work with certificates

This might be a quirk of PDM, and you might want to open a TAC support ticket. One quirk I noticed is when I created a 2048 bit long key on my pix, and then later fired up PDM for the first time - PDM wiped out the key I had generated, and replaced it with a shorter one.

136
Views
0
Helpful
1
Replies
CreatePlease to create content