cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
543
Views
0
Helpful
1
Replies
rchester
Beginner

Certs, IOS and unified client.

Can anyone help with setting up the unified client to use certificates on IOS vpn (12.2(8)T pre-shared and client group settings are ok, but client wants to use certificates. Is this possible with ACS or an LDAP server?

reload in 25 years
1 REPLY 1
cjacinto
Cisco Employee

The url below shows how to do xauth using Radius with pre-shared key.

http://www.cisco.com/warp/customer/707/ios_usr_rad.html

If you want to use certs instead, change the isakmp policy for authentication from pre-share to rsa-sig, enroll the router to a valid ca server and the same with the client.

Setup the client as in:

http://www.cisco.com/warp/customer/471/installmscert.html