I am playing with certificate based VPN deployment using Win2003 CA with MSCEP addon.
Using MSCEP - one time challange password - the router can request certificate, VPN works as I expected. The issue is the following when I revoke a certificate nothing happen on the router, I mean the certificate still valid, but on the CRL list on the server the certificate is on. Also my second concern is the certificate renewal, when I set the trustpoint to renew the certificate in 10 minutes the CA rejects it, how can I automatically renew the certificates with MSCEP?
So I am waiting examples answers for certificate revocation and auto renewal.
Thanks your help in advance.