My system using certificates to create point to point VPN connections, the certificate currently being used was created using OPEN SSL and is due expire. I've created a new certificate via a Windows Cert server and loaded onto the ASAs as a new trustpoint. When I adjust the crypto map to use the new trustpoint, the tunnel continues. If I then delete the expired trustpoint and clear the crypto tunnels, the tunnel will not re-establish. Is there a command I can run to see which certificate is being used as part of the establishment of the tunnel?
... View more