top of page
Search

VPN - Remote Access, SSL Self-Signed Cert Creation

  • Writer: dale warner
    dale warner
  • Aug 22, 2024
  • 1 min read

The configuration example details how to create a self-sign certificate for remote access VPN, and how to apply this cert to the 'OUTSIDE' interface


In the exam, you may be asked to have a self-signed cert of a specific size. This can be done by modifying the top line of the configuration example. It's important to play around with these settings in a lab and know how to replicate this configuration in the ASDM GUI. 

crypto key generate ecdsa label SSL-KP noconfirm
!
Crypto ca trustpoint SSL-TP
 revocation-check none
 id-usage ssl-ipsec
 no fqdn
 subject-name CN=ASAv02
 Enrollment self
 keypair SSL-KP
!
crypto ca enroll SSL-TP noconfirm
!
ssl trust-point SSL-TP OUTSIDE

Recent Posts

See All
ASA - Clustering

Configuration examples for ASA Clustering Individual interfaces (L3) Clustering Master Unit cluster interface-most indiviual force ! ip...

 
 
ASA - Contexts

Configuration example of setting up ASA contexts mode multiple ! mac-address auto ! interface g0/1 no shut interface g0/2 no shut...

 
 
ASA - High Availability

Some configuration examples related to Cisco ASA HA (Active/Passive and Active/Active) Active/Passive Failover - Same Failover & State...

 
 
bottom of page