Re: CA Question

[James Costello <genesiswave () gmail com>]

It Depends...
Does Router A support exporting the certificate?
There may be a command that will allow you to export the certificate,
If not, you should be able to generate a new certificate request from Router
B and have a replacement certificate issued by the CA.
<CAUTION>
Do not have the replacement certificate issued until you are ready to cut
over to the new device as the old certificate will be marked as invalid and
depending upon the solution may cause issues with the existing connections.

Alternatively you could generate the request from OpenSSL on a server and
then export the certificate from there for replacement on Router A and
installation on Router B.

On Mon, Apr 25, 2011 at 4:55 PM, Gibson, Samuel <gibsons () my uwstout edu>wrote:

>  Hello,
>
>
>
> This may be a bit of a silly newb question, but I was wondering if it is
> possible to transfer a certificate that has been signed by a CA (i.e.
> Thawte, Verisign) to a new device.  Consider the following situation:
>
>
>
> RouterA is using the signed cert for its remote access webpage.
>
>
>
> RouterA is intended to be upgraded by installing RouterB with the same
> config.  Is it possible to transfer the signed certificate from RouterA to
> RouterB in a way that allows it to remain valid, thus transparent to end
> users?
>
>
>
> Thank you very much for your time,
>
> Sam
>
> _______________________________________________
> Pauldotcom mailing list
> Pauldotcom () mail pauldotcom com
> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> Main Web Site: http://pauldotcom.com
_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com