Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

ASA 5512 VPN and cert.

Hello, could you help me please. I have 2 question (problems) with ASA 5512.

1.VPN Connection.

I make VPN connection to ASA how written there. It works! But after i can't ping or connect (telnet, ssh) to internal devices (servers). In my user computer don't have any new route after VPN connection established. Maybe in this problem?

2. SSL Cert.

I need to generate ssl cert. for VPN clients. But i don't have http access (asdm) to ASA 5512. Only console.

I generate the CSR  on ASA 5512 under console like that:

secretasa(config)#crypto key generate rsa label sslvpnkey

secretasa(config)#crypto ca trustpoint localtrust

secretasa(config-ca-trustpoint)#enrollment self

secretasa(config-ca-trustpoint)#fqdn sslvpn. secretcompany.com

secretasa(config-ca-trustpoint)#subject-name CN=sslvpn.secretcompany.com

secretasa(config-ca-trustpoint)#keypair sslvpnkey

secretasa(config-ca-trustpoint)#crypto ca enroll localtrust noconfirm

secretasa(config)# ssl trust-point localtrust outside

And after, i need generate file.cert for users and send them for other users. It is possible do it under console? If "yes" then how?

Everyone's tags (6)
209
Views
0
Helpful
0
Replies