Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

PKI Enrollment for GETVPN

We need to enroll our GMs to our KS's via PKI. Is there a way for us to enroll all our router using the same certificate/CSR? Thanks!

New Member

Hi johnpong99,From what I


equipment (in your case router) it is meant for. I don't think there is a way for the CA to issue a certificate usable on multiple devices

Hope this will help,

Best of luck

New Member

Hi Narcis,Thanks for your

Hi Narcis,

Thanks for your response. I was able to perform this however there are some drawbacks since you are using the same certificate signed by the CA, there will be no identity between the devices involved. Aside from that, there is an alarm being generated but is not traffic affecting.


New Member

Hy John,Interesting to know,

Hy John,

Interesting to know, but what is the purpose of the certificate if it can't uniquely identify each router. Does it help you?

Good luck

New Member

For ease of deployment

For ease of deployment purposes without involving the CA server. But this setup wasn't deployed in our production environment.