View trustpoint used for ISAKMP in IOS?

Unanswered Question
May 7th, 2008
User Badges:

When a router is configured for multiple trustpoints and all trustpoint certificates are valid for phase 1 authentication, is there a way to see which trustpoint was used for an IPSec tunnel outside of debug isakmp. I'd like to look at a DMVPN hub and see what trustpoints were used by the spokes. These tunnels are up and active.


Any thoughts on a show command or possible hidden command?


Thanks,

Mark

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
aghaznavi Tue, 05/13/2008 - 06:00
User Badges:
  • Silver, 250 points or more

I think when multiple CA trustpoints are specified within a single profile, ike will match only the last trustpoint configured.

Actions

This Discussion