Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

VPN certificates and preshared and DH group

Hi All,

Can some help me in the following queries please:


1) what is tp self-signed certifiate

2) can the certificates me copy pasted into the router config.

3)Why pre shared key is configured even after certificates are installed

4) Can some one share a link where I can find certificate configuation in IKE phase 1 and IKE phase 2

5) In pre shared l2l method, we configure the pre shared key. Is it used for data encryption or for IKE phase1? As per subject if DH group is configured, they exchange the keys by encrypting it with private key, so the other side will decrypt with public key. But why we are configuring the same key on both sides, when they are exchanging.


Some one help me in above queries please..