Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

Device administration using certificates

Rather then specifying SSH subnets for device administration, is it possible to use certificates instead?

1 REPLY
Silver

Re: Device administration using certificates

Here are the basic steps for enrolling with a CA and getting an identity certificate to use for authenticating tunnels. This example shows both automatic (SCEP) enrollment and manual enrollment. For information on fields not defined in this procedure, click the Help button.

1. Generating a key pair for the identity certificate. The key pair is RSA.

2. Creating a trustpoint.

3. Configuring an enrollment URL.

4. Authenticating the CA.

5. Enrolling with the CA, which places an identity certificate onto the security appliance

108
Views
0
Helpful
1
Replies
CreatePlease to create content