Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

CAs with Cisco Router VPN

Hello,

I will build a VPN-Tunnel with two Cisco Router. Is ist possible to use CA instead of pre shared keys?

Where can I find informations about this?

Do I have to buy any software to build my own CAs?

Thanks

Peer

1 REPLY
Community Member

Re: CAs with Cisco Router VPN

Yes, you can use certificates, but if you only have two routers you don't have scalability issues and RSA encrypted nonces are probably the most secure option. It also stops someone from recovering crypto keys by doing password recovery

You can issue certificates from MS IIS with a couple of add-on packages. It's fairly hassle-free, but remember, certificates were designed to solve authentication in the many-many arrangement, not one-one or one-many

Have a browse on the Cisco web site using VPN & certificates as the keywords.

147
Views
0
Helpful
1
Replies
CreatePlease to create content