Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
614
Views
0
Helpful
0
Replies

scep pki - tutorial

oliver.muehlbauer
Level 1
Level 1

‎05-14-2017 02:28 AM

Hello,

i have been tasked to setup a PKI for a new site-to-site VPN in lab.

I have successfully built that PKI using Cisco router as the CA following this guide:

https://supportforums.cisco.com/document/57441/ios-ca-basic-deployment-certificate-enrollment-and-signing-process

That was kind of simple. However the task was to setup the PKI using Linux as the CA.

First question i have is, are there any drawbacks using Cisco router acting as a CA ? Is there any kind of limit of clients i can handle? The only reason i know is that the Cisco router will introduce costs, where an CA on a Linux server is free. Are there other constraints ?

I have been reading tutorials over and over again but i did not find a good tutorial building a PKI between Cisco router and a Linux machine.

I have tested following in lab:

TinyCa - I did not succeed to even manually perform a certification request. I am not sure if TinyCA supports SCEP.

dogtag - i did not succeed to install dogtag . I installed CentOS, but stuck where i need to install the Fedora themes. This guide seems to be quit old..

I will try now following:

openxpki

openca

ejbca

Can anyone provide me with some tutorials on how to implement scep on these system ? Can some give a recomendation on which PKI system to choose ?

Many thanks,

Oliver

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents