Guest

Preview Tool

Cisco Bug: CSCvi60911 - Add a feature to install an Identity Certificate for fpr2100 via cli like in Firepower 4100/9300

Last Modified

May 24, 2018

Products (1)

  • Cisco Firepower 9000 Series

Known Affected Releases

r111_interim r112_interim r114 r201 r211 r212 r221 r222 r231 r232 r241

Description (partial)

Symptom:
The self-signed SSL certificate is generated for use with the Firepower 4100/9300 chassis web application. Because that certificate is self-signed, client browsers do not automatically trust it. The first time a new client browser accesses the Firepower 4100/9300 chassis web interface, the browser will throw an SSL warning, requiring the user to accept the certificate before accessing the Firepower 4100/9300 chassis. You can use the following procedure to generate a Certificate Signing Request (CSR) using the FXOS CLI and install the resulting identity certificate for use with the Firepower 4100/9300 chassis. This identity certificate allows a client browser to trust the connection, and bring up the web interface with no warnings. There is a need for the customer to do the same for 2100 platform.

Conditions:
n/a
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.