Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
295
Views
0
Helpful
2
Replies

PIX PDM/VPN CA Problem

moinseoul
Level 1
Level 1

‎04-25-2008 12:16 AM

Hi,

I have configured a PIX506E to use certificates from a Microsoft CA for a site-to-site VPN. Gernerating RSA keys, either General or Usage, work. Authenticating the CA and enrolling the PIX with the CA have no problems. I save the certificates and write the configuration to memory. VPN works without any problems. However after enrolling with the CA, connectivity to the PIX Device Manager (PDM) is lost. If I zeroize the RSA keys, I regain connectivity to the PDM, but loose the VPN!

Both the PIX and PDM are the latest software releases the PIX 506E support.

Any suggestions?

Labels:
0 Helpful
2 Replies 2

Not applicable

‎05-02-2008 06:16 AM

Do you have MS SCEP addon installed? It is required for enrollment.SCEP can be configured to use Challenge passwords during enrollment (as security feature).If so, then you should get a challenge string (using web link to SCEP page on CA server)

0 Helpful

moinseoul
Level 1
Level 1
In response to

‎05-02-2008 05:20 PM

CA support was working fine. The problem was that I was using an Enterprise CA not a stand alone CA. The new certificates were causing the SSL to fail when loading the certificates.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents