Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

ACE SSL AND CLIENT CERT AUTHENTICATION

Hi team.

I have a doubt about client certificate authentication.

I configure the following:

crypto authgroup GROUP1

cert ROOT

cert SUBORDINATE

ssl-proxy service TEST

cert SERVICE

key MYKEY

authgroup GROUP1

What I understand from the configuration guide,  to authenticate the client certificate, I have to configure the Authgroup and associate the certificate from the CAs whose create the client certificates correct?

What exactly the ACE verify?

Thanks in advance!

1 REPLY
Cisco Employee

ACE SSL AND CLIENT CERT AUTHENTICATION

Hi David,

The ACE would verify :

A recognized CA issued the certificate.

The validity period of the certificate.

The validity of certificate signature.

The certificate is not revoked by CA.

Hope this helps.

Thanks,

Rajesh

147
Views
0
Helpful
1
Replies
CreatePlease login to create content