View trustpoint used for ISAKMP in IOS?

Unanswered Question
May 7th, 2008

When a router is configured for multiple trustpoints and all trustpoint certificates are valid for phase 1 authentication, is there a way to see which trustpoint was used for an IPSec tunnel outside of debug isakmp. I'd like to look at a DMVPN hub and see what trustpoints were used by the spokes. These tunnels are up and active.

Any thoughts on a show command or possible hidden command?

Thanks,

Mark

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
aghaznavi Tue, 05/13/2008 - 06:00

I think when multiple CA trustpoints are specified within a single profile, ike will match only the last trustpoint configured.

Actions

This Discussion