ProxySG & Advanced Secure Gateway

 View Only
Back to discussions
Expand all | Collapse all

for proxy SG S400 -Max CA count limit reached , getting error 'you can only configure 500 CA certficatae'

  • 1.  for proxy SG S400 -Max CA count limit reached , getting error 'you can only configure 500 CA certficatae'

    Posted Apr 23, 2018 12:54 PM

    For Bluecoat S400-30, under configuration>SSL>CA certificate > we are unable to add new CA cert when we try 

     

    getting error 'you can only  configure 500 CA certficatae'.

     

    Is there way to know if all our current 500 CA certs are valid? and how to add new CA cert if we reached the maximum limit?

     

     

     



  • 2.  RE: for proxy SG S400 -Max CA count limit reached , getting error 'you can only configure 500 CA certficatae'
    Best Answer

    Posted Apr 23, 2018 11:41 PM

    Hi Purna,

     

                There are certain restrictions in GUI about such addition. The same goes for FW hosts also. Can you try adding the CA certificate from CLI. You can use the below format

    conf t
    ssl
    inline ca-certificate NAME_of_CA_Cert "end-701654422-inline"

    <<Insert the CA cert here>>


    end-701654422-inline
    exit

     

     

    Also to add the new CA cert to "browser-trusted" CCL, use below

    edit ccl browser-trusted
    add NAME_of_CA_Cert
    exit



  • 3.  RE: for proxy SG S400 -Max CA count limit reached , getting error 'you can only configure 500 CA certficatae'

    Posted Apr 26, 2018 05:09 AM

    Hi Aravind,

    Thanks, from cli it worked.