SSL VPN
Reply
Trusted Contributor
stine
Posts: 434
Registered: ‎05-05-2008
0

7.1R5 trusted CAs

Can someone explain these entries:

 

asglab.juniper.net             2010/06/2 - 2015/11/23
asglm.asglab.juniper.net       2010/03/9 - 2012/03/8
fifth.asglab.juniper.net       2010/05/14 - 2015/11/4
i15.asglab.juniper.net         2009/07/31 - 2015/01/21
juniper.net                    2010/06/1 - 2015/11/22
node3011.asglab.juniper.net    2010/05/13 - 2015/11/3
secure.juniper.net             2010/05/14 - 2015/11/4
ive79.sslvpnlab.com            2009/12/30 - 2015/06/22
help.com                       2010/05/12 - 2015/11/2
stdalnca                       2007/01/23 - 2012/01/23
ad-exch2k3                     2006/07/11 - 2056/07/11

 I'm not sure why these are in the CA list..

 

Theodore E Van Iderstine
Stream Networks
+1 678 373 4200 x125
JNCIA-ER (expired), JNCIA-SSL (ditto)
Recognized Expert
MattS
Posts: 205
Registered: ‎11-06-2007
0

Re: 7.1R5 trusted CAs

I had a search but could not find any reference to these, I assume they are used during the development and testing of various features where SSL connections are made to internal servers and have been left in the production build so the test suites can be used on the production releases without having to import the necessary CAs. 

If you are planning to delete them I would recommend taking a backup of them first, just in case, by exporting the configuration.

Trusted Contributor
stine
Posts: 434
Registered: ‎05-05-2008
0

Re: 7.1R5 trusted CAs

I'm running 7.1R5 (build 19757) Are you running the same build or are you running an older build that doesn't have these CAs installed? I just checked the download page and this is the current build.
Theodore E Van Iderstine
Stream Networks
+1 678 373 4200 x125
JNCIA-ER (expired), JNCIA-SSL (ditto)
Recognized Expert
MattS
Posts: 205
Registered: ‎11-06-2007
0

Re: 7.1R5 trusted CAs

I've found out that these are indeed internal test certificates and it is being tracked as a bug, they will be removed in a future release. 

Copyright© 1999-2013 Juniper Networks, Inc. All rights reserved.