Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
402
Views
0
Helpful
1
Replies

IOS CA with offline root and multiple subordinates

cairnsm
Level 1
Level 1

‎04-22-2008 09:08 AM

Does anyone have specific experience with setting up an offline root CA with multiple subordinates issuing certs to routers for VPN authentication? I'm working on setting this up for testing and the documentation does not clearly state if I can have certificates on 2 devices, issued by different subordinates of the same root and have trust between them for authentication.

Thanks in advance,

Mark

Labels:
0 Helpful
1 Reply 1

cairnsm
Level 1
Level 1

‎04-22-2008 01:12 PM

After testing and going over the documentation again, it looks like the answer is to configure a root (online) with multiple RA (registration authorities) below it. In initial testing, certs still needed to be granted at the root server, but hopefully this helps anyone looking to do a large scale PKI rollout.

Mark

0 Helpful
Customers Also Viewed These Support Documents