Category Archives: Certificates

IKEv2 between IOS routers with certificate authentication

We are about to switch from pre-shared keys IKEv2 authentication to an authentication with digital certificates. Our topology remains the same, but router named SERVER has two more functions. It’s a time server and a CA server: Let’s change our … Continue reading

Posted in Certificates, Cisco, IOS, PKI, VPN | Tagged , , , , , , , | 3 Comments

Renewing Cisco ASA identity certificate

Let’s say that we use certificates for authenticating our VPN connections. It does not matter if they are traditional Cisco IPSec or new AnyConnect clients. If we did not set our PKI infrastructure and ASA for auto enroll, what is … Continue reading

Posted in ASA, Certificates, PKI, VPN | Tagged , , , | 3 Comments

Installing SSL certificate on Cisco ACS Server II

Way back on October the 17th, 2011, we talked about installing a SSL certificate on Cisco ACS 4.x version. Now it’s time to do the same on version 5.x. We have upgraded by now, haven’t we To recap from this … Continue reading

Posted in ACS 5.x, ACS/RADIUS/TACACS, Certificates, Cisco, PKI | Tagged , , , , , , | 4 Comments

Installing SSL certificate on Cisco ACS Server

Perhaps you found yourself in the position when you wanted to use HTTPS for accessing your ACS server. Or maybe you needed to set it up for some kind of EAP authentication method like EAP-TLS or EAP-PEAP for your wireless … Continue reading

Posted in ACS/RADIUS/TACACS, Certificates, Cisco | Tagged , , , , | Leave a comment

Cisco ASA and VPN Client with certificate authentication (RSA-SIG)

Last time I wrote about PKI, NDES and setting up ASA to use these. I promised to talk about setting up remote access VPN with Cisco VPN client and certs. So, off we go… At this point we have PKI … Continue reading

Posted in ASA, Certificates, Cisco, PKI, VPN | Tagged , , , , | 2 Comments

Cisco ASA and Microsoft Enterprise CA

I’m sure most of you guys had opportunity to set up an IPSec VPN tunnel between two (Cisco) devices. I’m also almost certain that most of the time you used pre-shared keys for authentication. The reason for this is simple: … Continue reading

Posted in ASA, Certificates, Cisco, Microsoft, PKI | Tagged , , , , , , , | 5 Comments

Installing trusted SSL certificate on Radware AppXcel appliance

There is this company Radware (www.radware.com) that makes, among other things, SSL accelerators. This device is generally used for e-commerce apps by terminating SSL/TLS client requests, decrypting the traffic and passing the traffic to inside server. The big idea behind … Continue reading

Posted in Certificates, Radware | Tagged , , , , | 2 Comments