Jul 312012
 

This article describes the issue of being unable to access the device via SSL (port 443); but SSH and HTTP work normally.

After obtaining the output of the debug ssl all and debug pki basic command, the following logs were noticed:

## 2012-07-09 16:50:28: Error getting cert from hash.
SSL: Cannot find the Cert Sub Dn.

Cause of the issue

The issue is related to a corrupt self signed certificate.

Solution:
To resolve this issue, you need to remove the self signed certificate. To do so, perform the following procedure:

To delete the self signed certificate use the delete pki object-id system command.

Issue the get pki x509 cert system command to verify whether or not, the self signed certificate has been deleted.

Reboot the device, so that it generates a new certificate.

Try to login via HTTPS.

Sponsored Link

 Posted by at 9:32 am

 Leave a Reply

(required)

(required)

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>