I would like to know if I need to replace/migrate my IOS CA server at some point, in a GETVPN environment , will the GDOI group function with certificates from both new and old CA servers concurrently at that time. Any pointers is highly appreciated.
I don't know about GDOI. I do have some knowledge about CA's.
As long as the devices have a trust chain they should be happy. If you deploy a new certificate server, and you configure your devices to trust both CA's, then everything should be happy.
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
