05-13-2004 01:49 AM
Checkpoint / Netscreen refuste connection because :
IKE <ip_addr> Phase 1: Cert received has a different { IP address | FQDN | UFQDN } SubAltName than expected.
Pix use UNSTRUCTURED NAME and UNSTRUCTURED IP in the certificate.
Any idea
05-19-2004 06:39 AM
Try and regenerate your RSA Key and try to enroll with the CA Server again.
08-26-2014 09:45 AM
Hi owillins,
I have a VPN Site-to-Site b/w Cisco ASA 5512 9.1(1) and CheckPoint working with Pre-shared-key. The end customer wants to use Certificate instead of pre-shared-key. It is possible for each Site to use Certificate enrolled with different CA? What conditions must both Certificates match or be aware?
Thanks a lot in advance.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide