Installing GoDaddy SSL Certificates on a Cisco IOS Router using CLI

From DocWiki

Revision as of 12:09, 9 December 2009 (view source) Gherbstman (Talk | contribs) ← Older edit		Revision as of 21:46, 17 December 2009 (view source) Docwikibot (Talk | contribs) m (Bot: Adding {{Template:Required Metadata}}) Newer edit →
Line 1:		Line 1:
		+	{{Template:Required Metadata}}
	==Introduction==		==Introduction==

---

Revision as of 21:46, 17 December 2009

Contents 1 Introduction 2 Design 3 Configuration 4 Related show Commands 5 Related Information

Introduction

I have found the process of getting a GoDaddy certificate installed on an IOS router had, like many Cisco projects, become a research project. The process is poorly documented and much of the documented commands are outdated due to the changes in IOS. I hope this helps save some time and energy on your part.

Design

This design assumes a recent 12.4.x version of IOS and being familar with the GoDaddy certificate process.

Make sure your routers time is correct before starting. I suggest you setup NTP to keep the routers time correct. If the routers time is not correct, it will affect the certificate's functionality.

Configuration

Steps involve:

1. Create a 2048 bit RSA key.
2. Create the trustpoint.
3. Create the certificate request.
4. Submit the request to GoDaddy and retreive the certificates.
5. Install the intermedate certificate bundle.
6. Install the certificate.
7. Verify.

Full GoDaddy SSL Certificate configuration Example

Related show Commands

show crypto pki certificates show crypto pki trustpoints

Certain show commands are supported by the Output Interpreter Tool (registered customers only), which allows you to view an analysis of show command output.

Related Information

Technical Support & Documentation - Cisco Systems