08-18-2010 10:39 AM
Hi all,
I have a cisco 1811 router which has site to site vpn configured with 1 of my regional office. From the router config i can establish which are the phase 1 and phase2 configuration. However i see certificate info as below. How can i tell if the self sign certificate info below is being used by my router at all? Thks in advance.
crypto pki trustpoint test
enrollment selfsigned
subject-name cn=test2
revocation-check none
rsakeypair test
!
!
crypto pki certificate chain test
certificate self-signed 01
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
quit
08-18-2010 11:12 AM
Hi Don,
Check to see where you have associated the trustpoint test, for example ike this
crypto isakmp profile l2lvpn
ca trust-point test
08-18-2010 07:00 PM
Hi Asimalik,
There is no association for the trustpoint test throughout the config from i what see including the IKE config under crypto isakmp.
Hence i believe the CA is not in use. Thks.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide