Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
547
Views
0
Helpful
1
Replies

IOS IPSEC with RSA-SIG - moving the CA to a new router

kasper123
Level 4
Level 4

‎07-10-2015 03:29 AM - last edited on ‎02-21-2020 11:55 PM by Community Manager

We have a VPN running on cisco routers that uses RSA-SIG authentication.

One of the routers is the CA and it has issued certificates for itself and for the other router.

Now we are upgrading the CA router to a new 2911 router.

Is it possible to somehow move the CA from the current 2811 to the new 2911 router so that everything continues to work as it is?

Labels:
0 Helpful
1 Reply 1

Marcin Latosiewicz
Cisco Employee
Cisco Employee

‎07-11-2015 02:41 AM

There is a couple of thing to consider, like where you are storing your CRL etc. 

But in general you can follow this procedure: 

http://www.cisco.com/c/en/us/support/docs/ios-nx-os-software/ios-software-releases-124-mainline/82153-backup-restore-ios-ca.html

it's dated but close enough to today's syntax.

 

0 Helpful
Customers Also Viewed These Support Documents