Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Attention: The Cisco Support Community site will be in read only mode on Dec14, 2017 from 12:01am PST to 11:30am for standard maintenance. Sorry for the inconvenience.

New Member

VPN Design using CA (certificate authority)

In the process or redisgning current VPN deployment. Currently we have 300+ ASAs and 100 remote users on Windows Domain (Both are growing). Would like to use Certificates instead of Preshared Keys. Have some questions about the CA.

1) What are the pros and cons between using Enterprise or Standalone CA?

1a) What is more secure and more reliable?

1b) If we already have a domain, does using enterprise help? Benefits or problems?

2) Is it better to use 3rd party CA or manage one ourselves?

3) Any configuration tips or suggestions?

225
Views
0
Helpful
0
Replies
CreatePlease to create content