04-08-2012 01:48 AM - edited 02-21-2020 06:00 PM
I have a problem with site to site IPSec VPN tunnel if I want a digital certificate authentication, how can you configure ?
04-08-2012 02:41 AM
Check out the below config example
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080aa5be1.shtml
04-08-2012 02:56 AM
because it is sometimes possible only between two routers do
04-08-2012 04:21 AM
Cert Auhtentication for IPsec on IOS, you may check this link,
http://www.cisco.com/en/US/partner/docs/solutions/Enterprise/Security/DCertPKI.html. Though they have considered
Router as CA server you would want to use "enrollment terminal" in case of third party CA.
RV
04-08-2012 01:14 PM
If I click on the link I get this URL http code 403 is correct?
04-08-2012 07:07 PM
Rohan posted a partner link. The following should be publicly accessible:
http://www.cisco.com/en/US/docs/solutions/Enterprise/Security/DCertPKI.html
You can set this up quite easily using the wizard in Cisco Configuration Professional.
04-09-2012 12:23 AM
I geconfigureert but that the other router receives no digital certificate?
04-09-2012 12:28 AM
What do you see in the ISAKMP and IPSec debugs of the router which is not receiving the Certificate?
04-12-2012 10:10 AM
is that possible to do that because the two routers have only 2
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community
