EasyManuals Logo

Cisco 9134 - MDS Multilayer Fabric Switch User Manual

Cisco 9134 - MDS Multilayer Fabric Switch
560 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #484 background imageLoading...
Page #484 background image
Send documentation comments to mdsfeedback-doc@cisco.com
24-10
Cisco MDS 9000 Family Troubleshooting Guide, Release 3.x
OL-9285-05
Chapter 24 Troubleshooting Digital Certificates
Digital Certificate Issues
CA certificate 0:
subject= /emailAddress=amandke@cisco.com/C=IN/ST=Karnataka/L=Bangalore/O=Cisco/O
U=netstorage/CN=Aparna CA
issuer= /emailAddress=amandke@cisco.com/C=IN/ST=Karnataka/L=Bangalore/O=Cisco/OU
=netstorage/CN=Aparna CA
serial=0560D289ACB419944F4912258CAD197A
notBefore=May 3 22:46:37 2005 GMT
notAfter=May 3 22:55:17 2007 GMT
MD5 Fingerprint=65:84:9A:27:D5:71:03:33:9C:12:23:92:38:6F:78:12
purposes: sslserver sslclient ike
PKI Fails After Reboot
Symptom PKI fails after reboot.
Cannot Import Certificate and RSA Key Pairs from Backup
Symptom Cannot import certificate and RSA key pairs from backup.
Table 24-5 PKI Fails After Reboot
Symptom Possible Cause Solution
PKI fails after a
reboot.
Certificates not saved to NVRAM. Save the running-config to startup- config to save the trust
point to startup. Then reimport the certificates. See the
“Configuring Certificates on the MDS Switch Using Fabric
Manager” section on page 24-5 or the “Configuring
Certificates on the MDS Switch Using the CLI” section on
page 24-7.
Table 24-6 Cannot Import Certificate and RSA Key Pairs from Backup
Symptom Possible Cause Solution
Cannot import
certificate and RSA
key pairs from
backup.
Configured trust point is not empty. Delete the identity certificate, the CRL, and CA
certificates, and then disassociate the RSA key pair from
the trust point in that order. See the “Importing Certificate
and RSA Key Pairs from Backup Using Fabric Manager”
section on page 24-11 or the “Importing Certificate and
RSA Key Pairs from Backup Using the CLI” section on
page 24-11.
An RSA key pair exists with the same
name as the trust point that the import
failed for.
Delete the RSA key pair.
Choose Switches > Security > PKI in Fabric Manager.
Right-click the RSA key pair that you want to delete and
click Delete Row.
Or use the no crypto key zeroize rsa CLI command

Table of Contents

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco 9134 - MDS Multilayer Fabric Switch and is the answer not in the manual?

Cisco 9134 - MDS Multilayer Fabric Switch Specifications

General IconGeneral
BrandCisco
Model9134 - MDS Multilayer Fabric Switch
CategorySwitch
LanguageEnglish

Related product manuals