I want to set up a VPN server and connect 8 clients authenticating with certificates generated and signed by TinyCA.
I don't want to use a proper CA, I would rather use TinyCA. I have created a CA key and certificate and generated some client keystone certs, but I am unsure of how to properly import and chain the keys. I tried importing the CA cert and the key/cert for the router, but it doesn't seem to work. The ikev2 logs suggest it can't find the trust point.
All the documentation I have found online seems to assume commercial CA's. does anyone know what the best format to export the keys and cents from TinyCA. And what is the step by step procedure for importing the files to IOS 15.1. if anyone can point me in the direction of a guide on certificates on IOS that is clear on the subject, that would be great. All the ones I have found are confusing and not as simple as I need.
I assume I import the CA cert using the crypto pki import command, but do I use the same process for the routers key/cert, or do I use the crypto key commands?