Self signed certificates

Unanswered Question
Mar 26th, 2009
User Badges:

Dudes,


Is it possible to use self signed certificates for IPSec VPN?, I do not want to use preshared keys and third party CA for authentication.


If yes how do we do that.



Many thanks,

Rajesh

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
rajeshk200_2 Thu, 03/26/2009 - 08:24
User Badges:

I have seen that, It involves third party CA servers, I do not want to inlvolve CA's like Microsoft, Verisign, etc,


Thanks,

Rajesh


Wel - you need to generate the CSR, then you need a cert auth to validate the CSR. You cannot do this without a CA - the other options are in Unix/Linux - they can also sign/generate CSR's.


The Cisco ASA will not generate and sign certs for people/devices other than itself.


HTH>

rajeshk200_2 Thu, 03/26/2009 - 09:49
User Badges:

Andrew,


My requirement is to establish VPN tunnel between two Cisco routers with self signed certicates, i.e wanted to replace pre-shared keys with the certificates signed by router itself.


Is that possible on cisco routers?


Thanks,

Rajesh

rajeshk200_2 Fri, 03/27/2009 - 10:02
User Badges:

it looks matching my requirement, let me try this config, keep you posted the outcome.


Thamks,

Rajesh

Actions

This Discussion