

The SSL protocol mandates that the SSL Server provide the client with a server certificate for the client to perform server authentication. If your network is live, make sure that you understand the potential impact of any command. All of the devices used in this document started with a cleared (default) configuration. The information in this document was created from the devices in a specific lab environment. This document uses an ASA 5500-X that runs software version 9.4.1 and ASDM version 7.4(1). The Cisco ASA Series General Operations CLI Configuration Guide, 9.1 details the steps to take in order to set up the time and date correctly on the ASA. With certificate authentication, it is recommended to use a Network Time Protocol (NTP) server to synchronize the time on the ASA. Examples of third-party CA vendors include, but are not limited to, Baltimore, Cisco, Entrust, Geotrust, G, Microsoft, RSA, Thawte, and VeriSign.īefore you start, verify that the ASA has the correct clock time, date, and time zone. This document requires access to a trusted third-party Certificate Authority (CA) for certificate enrollment. Each step contains the Adaptive Security Device Manager (ASDM) procedure and the CLI equivalent. A GoDaddy Certificate is used in this example. This document describes the various operations to successfully install and use a third-party trusted Secure Socket Layer (SSL) digital certificate on the Adaptive Security Appliance (ASA) for Clientless SSLVPN and the An圜onnect client connections.
