ASA Fails to Reconnect to CDO After Reboot

If CDO and your ASA do not connect after an ASA reboot, it may be because the ASA has fallen back to using an OpenSSL cipher suite that is not supported by CDO's Secure Device Connector (SDC). This troubleshooting topic tests for that case and provides remediation steps.

Symptoms

  • ASA reboots and CDO and the ASA fail to reconnect. CDO displays the message, "Failed to reconnect."

  • When attempting to onboard an ASA, CDO displays the message: Certificate could not be retrieved for <ASA_IP_Address>.