Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Export SSL-VPN license and import it to another firewall

can we able to export this license from ASA 5520 Firewall (version 8.2) and import it to another firewall ASA 5520 with the same version 8.2 ?

Regards

Eng.Boody

Everyone's tags (1)
1 ACCEPTED SOLUTION

Accepted Solutions
Hall of Fame Super Silver

dmoudgil answered about

dmoudgil answered about certificates. You asked about licenses.

ASA feature licenses are not transferrable except in case of an RMA (Return Material Authorization - i.e. where a failed unit has been replaced under a support contract). In case of an RMA, the case owner will provide instructions to use the self-service licensing portal to get an activation-key for the replacement unit.

3 REPLIES

Hi ,How to copy SSL

Hi ,

How to copy SSL certificates from one ASA to another

This can be done if you had generated exportable keys. You need to export the certificate to a PKCS file. This includes exporting all of the associated keys.

Use this command to export your certificate via CLI:

    ASA(config)#crypto ca export <trust-point-name> pkcs12 <passphrase>

Note: Passphrase - used to protect pkcs12 file.

Use this command to import your certificate via CLI:

    SA(config)#crypto ca import <trust-point-name> pkcs12 <passphrase>

Note: This passphrase should be the same as used when exporting the file.

This can also be done through ASDM for an ASA failover pair. Complete these steps to perform this:

    Login to the primary ASA via ASDM and choose Tools--> Backup Configuration.

    You can backup everything or just the certificates.

    On the standby, open ASDM and choose Tools --> Restore Configuration.

 

For further information:-
http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/107956-renew-ssl.html

 

Regards,

Dinesh Moudgil

 

New Member

Thanks Marvin Rhoads and

Thanks Marvin Rhoads and dmoudgil for your effort to provide me such this information, regarding to you dmoudgil about your suggested to copy the SSL-VPN certificate ,ill test it and feed you back later.

Thanks again,

Eng. Boody

Hall of Fame Super Silver

dmoudgil answered about

dmoudgil answered about certificates. You asked about licenses.

ASA feature licenses are not transferrable except in case of an RMA (Return Material Authorization - i.e. where a failed unit has been replaced under a support contract). In case of an RMA, the case owner will provide instructions to use the self-service licensing portal to get an activation-key for the replacement unit.

466
Views
5
Helpful
3
Replies