Migrating RSA Keypairs to a new ASA??
cisco_trooper
Member Posts: 1,441 ■■■■□□□□□□
I have an ASA5510 that I want to migrate to a 5520. This device is the terminating endpoint for over 100 certificate based remote access ipsec VPNs. There is a trustpoint configured to use a Microsoft CA. I need to migrate the certificates and RSA keys from the 5510 to the 5520 in order to avoid re-enrolling over 100 remote users. Has ANYONE done anything like this on the ASA? I have been from one side of the internet to the other and I can NOT find anything. I'm mostly stuck with getting the RSA Keys migrated, I think I can do the certificates fairly easily.
Getting pretty frustrated at this point.
Getting pretty frustrated at this point.
Comments
-
_maurice Member Posts: 142When creating the keys, didn't you have to specify a storage location? Are the keys marked es exportable?
-
cisco_trooper Member Posts: 1,441 ■■■■□□□□□□No and no. I have no option of specifying a storage location during key generation on this device. I don't see where the keys are marked (or not marked) as exportable.