Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
ovt Bronze
Bronze

Identity certificate lost on VPN 3005 after power failure

Hi!

I got the following message after power failure on VPN 3005:

17 01/01/1999 00:00:12.880 SEV=2 CERT/26 RPT=1

Unable to load identity certificate: filename = CERT0012.PEM

Reason = Incomplete chain

This certificate will be deleted from the store!!

1) Enrollment

2) Installation

3) Certificate Authorities

4) Identity Certificates

5) SSL Certificates

6) Enrollment Status

7) SSH Host Key

8) Back

c4: Certificates -> 4

No Identity Certificates

I think the concentrator lost identity certificate because time and date were reset back to 1999 upon power failure and CA cert. became invalid.

Can anybody tell me is this normal behaviour of VPN 3000 boxes ???

Thx.,

Oleg Tipisov

REDCENTER

1 REPLY
Silver

Re: Identity certificate lost on VPN 3005 after power failure

Digital Certificate:

The above parameter specifies whether to use preshared keys or a PKI (Public Key Infrastructure) digital identity certificate to authenticate the peer during Phase 1 IKE negotiations. See the discussion under Administration | Certificate Management.

Click the Digital Certificate drop-down menu button and choose the option. The list shows any digital certificates that have been installed, plus:

None (Use Preshared Keys) = Use only preshared keys to authenticate the peer during Phase 1 IKE negotiations. This is the default choice.

153
Views
0
Helpful
1
Replies
CreatePlease to create content