Cisco® Secure Internet Security Solutions

Obtaining Certificate Authorities (CAs)

Retrieving certificate authorities (CAs) with the PIX Firewall uses almost exactly the same method as that used on routers. The following are the commands used to obtain a CA. Note that these commands might not show in a configuration. The administrator should avoid rebooting the PIX during this sequence. The steps are explained as they are shown.

First, define your identity and the IP address of the interface to be used for the CA. Also configure the timeout of retries used to gain the certificate and the number of retries.

ca identity bigcompany.com 172.30.1.1
ca configure bigcompany.com ca 2 100

Generate the RSA key used for this certificate.

ca generate rsa key 512

Then get the public key and certificate. ...

Get Cisco® Secure Internet Security Solutions now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Cisco® Secure Internet Security Solutions by Mark Newcomb, Andrew Mason

Obtaining Certificate Authorities (CAs)

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly