Ask a Question

Advanced Search

Alert ID : INFO283

Last Modified : 05/17/2018

Managed PKI for SSL - Installation Instructions for Cisco ACS 3.2

Description

 

This document provides instructions for installing SSL Certificates. If unable to use these instructions for your server, Symantec recommends contacting either the vendor of your software or an organization that supports ACS.

Step 1: Download the Symantec Intermediate CA Certificate

  1. Download the Intermediate CA certificate from this link.
  2. Click on Managed PKI for SSL tab, click on the appropriate link for your SSL Certificate.
    For example, if you are installing a Premium SSL Certificate, click the Premium Intermediate CA Certificate link.
    NOTE: To check which certificate type has been purchased, perform the steps from this link.
  3. Select the appropriate Intermediate CA certificate for your SSL Certificate type.
  4. Copy the Intermediate CA certificate and paste it on a Notepad.
  5. Make sure there are 5 dashes to either side of the BEGIN CERTIFICATE and END CERTIFICATE and that no white spaces, extra line breaks or additional characters have been inadvertently added.
  6. Save the file as intermediate.cer.


Step 2: Install CA Certificate

  1. In the navigation bar, click System Configuration.
  2. Click ACS Certificate Setup.
  3. Click ACS Certification Authority Setup.
  4. CiscoSecure ACS displays the CA Operations table on the Certification Authorities Setup page.
  5. In the CA certificate file box, type the full path and filename for the certificate you want to use.
  6. Locate and import the intermediate.cer.
  7. Click Submit.


Step 3: Obtain the SSL Certificate

  1. The Symantec certificate will be sent by email. The certificate is included as an attachment (Cert.cer) and it is also imbedded in the body of the email.
  2. Copy and paste the certificate into a text file using Vi or Notepad.

    The text file should look like:

    -----BEGIN CERTIFICATE-----
        
            [encoded data]

    -----END CERTIFICATE-----
     
  3. Make sure there are 5 dashes to either side of the BEGIN CERTIFICATE and END CERTIFICATE and that no white spaces,
    extra line breaks or additional characters have been inadvertently added.

    NOTE: Click here for steps to download the certificate from your Managed PKI for SSL subscriber services page.
    Please select X.509 as a certificate format and copy only the End Entity Certificate.
     
  4. Save the file with extansion .cer.


Step 4: Install the SSL Certificate

  1. In the navigation bar, click System Configuration.
  2. Click ACS Certificate Setup.
  3. Click Install ACS Certificate.
  4. CiscoSecure ACS displays the Install ACS Certificate page.
  5. Select the Read certificate from file option, and then type the full directory path and filename of the certificate file in the Certificate file box.
  6. In the Private Key file box, type the full directory path and name of the file that contains the private key.
  7. In the Private Key password box, type the private key password.
  8. Click Submit.
  9. To verify if your certificate is installed correctly, use the Symantec Installation Checker.


Cisco 

         For more information, see the Cisco Technical Support Center.