Jul 312012

This article describes the issue of being unable to access the device via SSL (port 443); but SSH and HTTP work normally.

After obtaining the output of the debug ssl all and debug pki basic command, the following logs were noticed:

## 2012-07-09 16:50:28: Error getting cert from hash.
SSL: Cannot find the Cert Sub Dn.

Cause of the issue

The issue is related to a corrupt self signed certificate.

To resolve this issue, you need to remove the self signed certificate. To do so, perform the following procedure:

To delete the self signed certificate use the delete pki object-id system command.

Issue the get pki x509 cert system command to verify whether or not, the self signed certificate has been deleted.

Reboot the device, so that it generates a new certificate.

Try to login via HTTPS.

Sponsored Link

 Posted by at 9:32 am