I am migrating our VPN network from traditional VPN to DMVPN. However I have a concern of security. Since nothing needs to be configured on HUB when turn on remote sites, so anyone who knows the parameters of the VPN settings can connect to our network from anywhere. How should we address this issue? Is there a way to do certificate based authentication? If so, could anyone send me the link of documents?