Skip to main content

Self-Signed Certificates

(2018-01-10)

Problem

I have a new ASA and I need some self-signed certificates.

Solution

(this is all conf t )

Setup stuff:

hostname  myasa
domain-name cisco.com
clock set 00:00:00 1 Jan 2010
clock  set timezone EST -5

Generate the default rsa keypair:

crypto key generate rsa modulus 1024

Generate the cert:

crypto ca trustpoint self
enroll self
fqdn myasa.cisco.com
subject-name CN=myasa.cisco.com
crypto ca enroll self noconfirm