SCEP is used to enroll certificates online, I believe it is also used to check CRL lists from the CA server, if your routers are constantly enrolling to this certificate server then you will need SCEP, on the other hand, certificate enrollment can be performed offline using manual enrollment. This will apply for any vpn client connecting to the router as well.
Unfortunately, the NDES service (SCEP) is only supported on Enterprise or Datacenter versions of WS 2008 or 2008 R2. There is an Open Source package called OpenCA which supports SCEP. It could be installed as an intermediate CA to the Microsoft Root CA to handle the SCEP enrollment requests.
Are there any other solutions to use Cisco-VPN+etokens without bying enterprise version of windows server? Has anyone tested cisco IOS CA + etokens? How to enroll certificates to eTokens from cisco CA? Any advices about that will be helpfull.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...