Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1444
Views
0
Helpful
2
Replies

Site to Site VPN with certificate authentication using ASA as LOCAL CA Server

Mohammed Islam
Level 1
Level 1

‎12-14-2011 07:36 AM

Hi,

As the title suggests I am planning on rolling out site to site VPN using ASA as a local CA Server.

I  have been looking around on the forums and cisco.com but cannot see any  form of documentation on using the ASA as the local CA for site to  site.

Is this possible?  If so can someone point me in the right direction please.

Many thanks.

Regards

Mo

Labels:
0 Helpful
2 Replies 2

Marcin Latosiewicz
Cisco Employee
Cisco Employee

‎12-14-2011 07:40 AM

Mohammed,

It might be possible (in term of getting the actual certificate auth to work), however Cisco will not support this deployment. Local CA was meant only for SSLVPN remote access, nothing in IPsec is officially supported.

Marcin

0 Helpful

Mohammed Islam
Level 1
Level 1
In response to Marcin Latosiewicz

‎12-14-2011 07:45 AM

Cool, but I just need to know whether anyone has configured it successfully.

Not really concerned whether Cisco supports it or not...if that makes sense!

Do you know/heard if this is possible at all?

Thanks.

0 Helpful
Customers Also Viewed These Support Documents