Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
532
Views
0
Helpful
1
Replies

ACE SSL AND CLIENT CERT AUTHENTICATION

David Martinez Garcia
Level 1
Level 1

‎02-26-2014 04:31 AM

Hi team.

I have a doubt about client certificate authentication.

I configure the following:

crypto authgroup GROUP1

cert ROOT

cert SUBORDINATE

ssl-proxy service TEST

cert SERVICE

key MYKEY

authgroup GROUP1

What I understand from the configuration guide,  to authenticate the client certificate, I have to configure the Authgroup and associate the certificate from the CAs whose create the client certificates correct?

What exactly the ACE verify?

Thanks in advance!

Labels:
0 Helpful
1 Reply 1

rajsures
Cisco Employee
Cisco Employee

‎02-26-2014 06:10 AM

Hi David,

The ACE would verify :

A recognized CA issued the certificate.

The validity period of the certificate.

The validity of certificate signature.

The certificate is not revoked by CA.

Hope this helps.

Thanks,

Rajesh

0 Helpful
Customers Also Viewed These Support Documents