cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
671
Views
0
Helpful
1
Replies

ACE SSL AND CLIENT CERT AUTHENTICATION

Hi team.

I have a doubt about client certificate authentication.

I configure the following:

crypto authgroup GROUP1

cert ROOT

cert SUBORDINATE

ssl-proxy service TEST

cert SERVICE

key MYKEY

authgroup GROUP1

What I understand from the configuration guide,  to authenticate the client certificate, I have to configure the Authgroup and associate the certificate from the CAs whose create the client certificates correct?

What exactly the ACE verify?

Thanks in advance!

1 Reply 1

rajsures
Cisco Employee
Cisco Employee

Hi David,

The ACE would verify :

A recognized CA issued the certificate.

The validity period of the certificate.

The validity of certificate signature.

The certificate is not revoked by CA.

Hope this helps.

Thanks,

Rajesh

Review Cisco Networking for a $25 gift card