Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

VPN group authentication Vulnerability

Currently we are using groups and group password for our VPN auth. With the new vulnerablity is there an alternative auth the we can use. Looks like certificates are vulnerable too is this correct?

1 REPLY
Silver

Re: VPN group authentication Vulnerability

The work around available in the document is,

No workarounds exist for the vulnerabilities documented in this Notice.

To avoid the potential exploitation because of these vulnerabilities Cisco PSIRT recommends customer deploy Public Key Infrastructure (PKI) and carefully evaluate the risks of deploying Group Password based authentication schemes.

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_security_notice09186a0080215981.html

113
Views
0
Helpful
1
Replies