Cisco Support Community
Community Member

VPNs using Microsoft CA Certificates

I have installed a router running 12.2(8)T IOS to end IPSec tunnels from Cisco VPN clients.

I've configured the router to authenticate the tunnel using MS CA certificates, but I cannot check the Certificate Revocation List (CRL) in order to know if the certificate is still valid.

I configured the appropiate ldap query to the CA itself first, and then to aone of the servers running Active Directory, but in both cases the router seems to do a broadcast ( to resolve the ldap query.

Has somebody configured an scenario like this one? Can anybody help me?


Re: VPNs using Microsoft CA Certificates

Since there has been no response to your post, it appears to be either too complex or too rare an issue for other forum members to assist you. If you don't get a suitable response to your post, you may wish to review our resources at the online Technical Assistance Center ( or speak with a TAC engineer. You can open a TAC case online at

If anyone else in the forum has some advice, please reply to this thread.

Thank you for posting.

CreatePlease to create content