Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
666
Views
0
Helpful
2
Replies

Cisco ASA firewall or Firepower Appliance - IKEv2 RFC 5996 Compliance

rthakker
Level 1
Level 1

‎03-05-2018 04:05 AM - edited ‎02-21-2020 07:28 AM

Hello Everyone,

 

I am trying to evaluate Cisco ASA firewalls for a client and struggling to test. End client is using strongswan vpn client which supports RFC 5996 feature of cached certificate or HASH_AND_URL. However I am not sure if this is supported feature. Could someone please tell me if current Cisco ASA firewalls (Any software v8.1 or later (including latest 9.6.1)) or Cisco Firepower Appliance supports IKEv2 RFC 5996 Compliance or not?   

 

Thanks

RT

 

 

Labels:
0 Helpful
2 Replies 2

Florin Barhala
Level 6
Level 6

‎03-07-2018 02:16 AM

I found here that's supported since 8.4
https://supportforums.cisco.com/t5/vpn/is-ikev2-support-on-cisco-asa-firewall/td-p/1517024
0 Helpful

rthakker
Level 1
Level 1
In response to Florin Barhala

‎03-07-2018 03:17 AM

Hi Florin,

 

Thank you for your suggestion but my issues is focused on support for cached certificate or HASH_AND_URL which is documented under RFC 5996. 

 

RT

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card