Loading...
Loading...
ASA devices configured in FIPS mode are unable to connected to the Smart Licensing Server and the Smart Call Home server. Manually installing the QuoVadis root certificate fails with the following error: Trustpoint CA certificate is not FIPS compliant. % Error in saving certificate: status = FAIL
ASA configured with FIPS enabled
Manually install the HydrantID SSL ICA G2 intermediate certificate for the tools.cisco.com server as indicated in this Field Notice: https://www.cisco.com/c/en/us/support/docs/field-notices/703/fn70319.html
When trying to load Quovadis Root Certificate as a trustpoint on the ASA got a Fail status saying that the certificate is not in FIPS Compliant ASA# conf t ASA(config)# crypto ca trustpoint QuoVadisRootCA2 ASA(config-ca-trustpoint)# enrollment terminal ASA(config-ca-trustpoint)# crl configure ASA(config-ca-crl)# crypto ca authenticate QuoVadisRootCA2 Enter the base 64 encoded CA certificate. End with the word "quit" on a line by itself -----BEGIN CERTIFICATE----- copy paste of cert -----END CERTIFICATE----- quit INFO: Certificate has the following attributes: Fingerprint: 5e397bdd f8baec82 e9ac62ba 0c54002b Do you accept this certificate? [yes/no]: yes Trustpoint CA certificate is not FIPS compliant. % Error in saving certificate: status = FAIL
Click on a version to see all relevant bugs
Cisco Integration
Learn more about where this data comes from
Bug Scrub Advisor
Streamline upgrades with automated vendor bug scrubs
BugZero Enterprise
Wish you caught this bug sooner? Get proactive today.