Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1124
Views
5
Helpful
3
Replies

FTD 6.4 SSL VPN with ECDSA

br15
Level 1
Level 1

‎10-27-2020 04:46 PM

Hello,

I have a working remote access SSL VPN solution using a pair of FTDs on 6.4.  The current SSL certificate is RSA based but we've been asked to upgrade to ECDSA for suite B. The documentation states 'Only RSA based certificates are supported in SSL and IPSec'.  Has anyone got an elliptic curve certificate working for SSL VPNs on the FTD? 

Thank you,

Martin

Labels:
3 Replies 3

MHM Cisco World
VIP
VIP

‎10-27-2020 04:54 PM

it can use dh instead of rsa,

I will share example later.

0 Helpful

Karsten Iwen
VIP
VIP
In response to MHM Cisco World

‎10-28-2020 12:27 AM

@MHM Cisco World wrote:

it can use dh instead of rsa,

He is talking about the certificate that is used for authentication. Authentication and Key-Exchange are different functions.

0 Helpful

Karsten Iwen
VIP
VIP

‎10-28-2020 12:26 AM

At least it is documented to be supported on version 6.6. But I am not aware of the first release that supports it.

0 Helpful
Customers Also Viewed These Support Documents