SRX Services Gateway
Highlighted
SRX Services Gateway

SSL proxy default trusted CA cert missing

‎12-03-2015 09:42 AM

Has anybody configured SSL proxy and used the default CA list cert?

 

I can't get it working as per the documentation.

 

https://www.juniper.net/techpubs/en_US/junos12.1x47/topics/reference/command-summary/request-securit...

 

http://www.juniper.net/documentation/en_US/junos12.3x48/topics/task/configuration/ssl-proxy-workflow...

 

When I try to load the cert - it can't see it.

 

request security pki ca-certificate ca-profile-group load ca-group-name ca-default filename default

 


root@Branch5> ...ile-group load ca-group-name ca-default filename default
Do you want to load this CA certificate ? [yes,no] (no) yes

error: Internal error: Failed to open file '/usr/share/ui/support/Trusted_CAs.pem'.

root@Branch5>

 

root@Branch5> start shell
root@Branch5% find / -name "*.pem"
/cf/var/db/certs/FeatureLicense-v4.pem
/etc/certs/DallasCA.pem
/etc/certs/EngineeringCA.pem
/etc/certs/FeatureCA.pem
/etc/certs/JuniperRootCA.pem
/etc/certs/PackageCA.pem
/etc/certs/SecureChip2007CA.pem
/etc/db/certs/Dallas-v3.pem
/etc/db/certs/FeatureLicense-v1.pem
/etc/db/certs/FeatureLicense-v2.pem
/etc/db/certs/FeatureLicense-v3.pem
/etc/db/certs/FeatureLicense-v4.pem
root@Branch5%

 

There is no Trusted_CAs.pem

 

root@Branch5> show version
Hostname: Branch5
Model: srx240h2
JUNOS Software Release [12.3X48-D15.4]

1 REPLY 1
Highlighted
SRX Services Gateway

Re: SSL proxy default trusted CA cert missing

‎12-03-2015 10:08 AM

Sorted, it's there in x47D30

 

root@Branch5% find / -name "*.pem"
/cf/var/db/certs/FeatureLicense-v4.pem
/etc/certs/DallasCA.pem
/etc/certs/EngineeringCA.pem
/etc/certs/FeatureCA.pem
/etc/certs/JuniperRootCA.pem
/etc/certs/PackageCA.pem
/etc/certs/SecureChip2007CA.pem
/etc/db/certs/Dallas-v3.pem
/etc/db/certs/FeatureLicense-v1.pem
/etc/db/certs/FeatureLicense-v2.pem
/etc/db/certs/FeatureLicense-v3.pem
/etc/db/certs/FeatureLicense-v4.pem
/usr/share/ui/support/Trusted_CAs.pem
root@Branch5%

 

 

Feedback