Menu
picture of tbs certificates
picture of tbs certificates
Certificates
Our products range
Partners
Support
Focus


Generate a CSR for Cisco ASA (Web, VPN, 5500, ASA 8.x, ...)

ASDM version 6.x and + :

Cisco ASDM User Guide 7.14 - Generate a Certificate Signing request
ASA 8.x: Renew and Install the SSL Certificate with ASDM
  • Go to "ASDM / ... / Certificat Management / Identity Certificate"

  • Click on the button "Add" (or "enroll")

  • Select "Add a new identity certificate", so there is no risk of disrupting existing production services while receiving your new certificate.

  • We recommend, for each new installation or certificate renewal, to create a new private key each time in your interface, for that, click on key Pair : "New",
    choose a name for your private key, for example "Sitename-2020", select a key size from 2048-bit minimum. Leave by default on "General purpose", then click on "Generate Now".
    Now, the private key associated with your SSL certificate, necessary for the encryption of your connection, has just been installed in your system.

  • In the screen "Add Identity Certificate", you have therefore selected the private key that you have just generated.

  • In the form "Certificat Subject DN:" (to avoid confusion this can correspond to the CN (Common Name) field of the certificate), enter the address of the service to be secured (for example: www.monsiteweb.fr)

  • Finally, click on the button "Add Certificat"

  • In the following window, enter the information:


    • CN: Common name / domain name / server name / FQDN:
      here you must indicate the name of your SSL server, for example "secure. Enterprise.fr", or "www.my-domain.fr" or www.product.com. No IP address (learn more). No spaces nor blank characters.

      In case you want to order a multi-domain certificate / SANs, enter in the CSR only one address, the main one, the one that can no longer be changed during the lifetime of your certificate (It is in our order form that you can then enter the other addresses to secure, can thus be updated during re-manufacturing).

    • O: Company Name Organization:
      write here the company name (not the trade name or acronym) of your company or organization, preferably in capital letters.

    • C: Country:
      Indicate FR if your company is in France, BE for Belgium, etc, in uppercase preferably.

    • ST: State:
      In France indicate the name of the department where your company headquarters are based (not the number).

    • L: Location City:
      Indicate the city where your company headquarters are based.

    • OU: Department Organizational unit / Division / Branch:
      We advise not to fill in this field or to enter a generic term such as "IT Department".

  • Then click "OK". On the following window "Identity Certificate Request" select the folder in which the CSR (Certificat Signing Request) will be created.
    Click "OK"
  • Now, the 1st big step to obtain a certificate is finished. Now just open this CSR text file and copy / paste its content in the online order form for the certificate on our website or in your customer area.

Installation of the X509 SSL certificate

Once the audit processed, you will receive a delivery e-mail containing your certificate and you will be able to follow the installation instructions available here.

Useful links