Hi all, I answered part of my question. I went to the IOSCA router and exported my CA cert from nvram to my desktop and installed it in my Trusted root authorities.
So that know when I browse to the ASA there is no pop up. However, I get the same result if the 'ssl trust-point trustpointname' command is in or not. So what does the ssl trust command do? Thanks, JT On Sat, Aug 20, 2011 at 8:53 PM, Jim Terry <[email protected]> wrote: > Hi all, > > I am doing this section w/o the NAC and with local user authentication and > the part that I am trying to understand is: > > Getting the XP test machine to browse to the ASA and not having any cert > errors. > > I know that on the ASA I need the trustpoint and authenticate/enroll and > 'ssl trust trustpointname' > > I assume that I modify the XP host file to show the ASA name and the ASA IP > address > > But whenever I browse to the ASA by name the cert shows untrusted even if I > install the cert in the Trusted Root Authority of the XP machine. > > So is this because I have not installed the CA cert but rather the identity > cert from the ASA? > > > Please let me know. > > JT > >
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
