Guest

Preview Tool

Cisco Bug: CSCum25951 - SA PKI debugs to indicate incorrect password during pkcs12 import

Last Modified

Nov 08, 2016

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

9.1(4)

Description (partial)

Symptom:
While importing a PKCS12 using a wrong pass-phrase, no "invalid password" error message appears.

Same behavior is seen even when the following debugs are enabled :

1. debug crypto ca 255
2. debug crypto ca messages 255
3. debug crypto ca transactions 255

Conditions:
ASA is acting as a PKI client, trying to import a PKCS12 to a trust-point.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.