Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

IOS & Microsoft CA interoperability

I want to set up VPN between routers with digital certificates. I'm using MS Win2000 CA service with SCEP protocol fot CA role. I tried several times to enroll certificate from CA but all of these was unsuccessful. I didnt see any certificate requests on CA console (pending or any ). I get CA certificate without any problem but it wasnt able to enroll its own certificate from CA . So is there anybody who is going to help me ?

Here is my equips.

-1751 Router with 12.2(8T4) des/3des enabled IOS (VPN works fine with pre-shared keys)

-win2k server (or advanced server, i tried both)

-cep add-on with MS Cryt. Provider 1024 bit with unticked Require SCEP Challenge.

-host names and ip address is true.

1 REPLY
Cisco Employee

Re: IOS & Microsoft CA interoperability

Make sure the clock is right on the router, and in synch with the CA server.

clear the keys and the cert, then restart the procedure as per here:

http://www.cisco.com/warp/customer/707/mult-id-ca.html

Regards,

186
Views
0
Helpful
1
Replies
CreatePlease to create content