Guest

Preview Tool

Cisco Bug: CSCtb77554 - NGS guides do not explain how to install SSL certs with intermediate CA

Last Modified

Feb 22, 2014

Products (1)

  • Cisco NAC Appliance 3300 Series

Known Affected Releases

2.0(1)

Description (partial)

Symptom:
 
NGS guides do not explain how to install SSL certificates with an intermediate CA.
 
 Conditions:
 
There are no configuration examples to install SSL certificates issued by an
intermediate CA.
 
If we want to use a SSL certificate on NGS signed by an intermediate CA, we
need to uncomment "SSLCertificateChainFile" under /etc/httpd/conf.d/ssl.conf
 
Then we need to make sure that the file it is pointing to is the .PEM one
combining the root CA and intermediate CA certificates together in the same
file like
 
-----BEGIN CERTIFICATE-----
Intermediate CA certificate
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
Root CA certificate
-----END CERTIFICATE-----
 
This procedure has been confirmed by the NAC BU / development team and it will
be added to the configuration guides.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.