Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Users might experience few discrepancies in Search results. We are working on this on our side. We apologize for the inconvenience it may have caused.
New Member

Basic L2L with Digitial Certificates question

Hi friends,

When setting up a L2L VPN between two peers, if certificate based authentication is required, and if these two peers are from different networks, then i believe that third party CA is the way to go.

Lets say that one VPN peer is a VPN Concentrator and the other end VPN peer is PIX / ASA / IOS Router, then should both these peers acquire identity certificate from same third party CA or can they acquire identity certificates from different third party CA's.

Lets say that VPN Concentrator needs to build a L2L with ASA, can VPN Concentrator have an identity certificate from Verisign and ASA from Baltimore?

Thanks a lot

Gautam

1 REPLY
Silver

Re: Basic L2L with Digitial Certificates question

I think concentrators can authenticate any number of ways identify the certificate and also ASA so you can implement this method

123
Views
0
Helpful
1
Replies
CreatePlease to create content