Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
461
Views
0
Helpful
0
Replies

Migrating ASA AnyConnect IPSec based VPN Trust Chain

bshort
Level 1
Level 1

‎01-24-2023 09:52 AM

We currently have a PKI based IPSec Remote Access VPN running on an ASA. We need to switch the entire Trust Chain. During the migration window, we need to be able to support AnyConnect VPNs with either Trust Chains. I don't have a lab to test.

My current thinking is to use set trustpoint in the crypto map to differentiate between the two. Sequence 10 would use the current trust chain and sequence 20 would use the new trust chain.

Is this the workable and is this the best way to do it?

Thanks in advance.

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents