Category Archives: PKI

PKI (Public Key Infrastructure).

IKEv2 between IOS routers with certificate authentication

We are about to switch from pre-shared keys IKEv2 authentication to an authentication with digital certificates. Our topology remains the same, but router named SERVER has two more functions. It’s a time server and a CA server: Let’s change our … Continue reading

Posted in Certificates, Cisco, IOS, PKI, VPN | Tagged , , , , , , , | 3 Comments

Renewing Cisco ASA identity certificate

Let’s say that we use certificates for authenticating our VPN connections. It does not matter if they are traditional Cisco IPSec or new AnyConnect clients. If we did not set our PKI infrastructure and ASA for auto enroll, what is … Continue reading

Posted in ASA, Certificates, PKI, VPN | Tagged , , , | 3 Comments

Installing SSL certificate on Cisco ACS Server II

Way back on October the 17th, 2011, we talked about installing a SSL certificate on Cisco ACS 4.x version. Now it’s time to do the same on version 5.x. We have upgraded by now, haven’t we To recap from this … Continue reading

Posted in ACS 5.x, ACS/RADIUS/TACACS, Certificates, Cisco, PKI | Tagged , , , , , , | 4 Comments

Cisco ASA and VPN Client with certificate authentication (RSA-SIG)

Last time I wrote about PKI, NDES and setting up ASA to use these. I promised to talk about setting up remote access VPN with Cisco VPN client and certs. So, off we go… At this point we have PKI … Continue reading

Posted in ASA, Certificates, Cisco, PKI, VPN | Tagged , , , , | 2 Comments

Cisco ASA and Microsoft Enterprise CA

I’m sure most of you guys had opportunity to set up an IPSec VPN tunnel between two (Cisco) devices. I’m also almost certain that most of the time you used pre-shared keys for authentication. The reason for this is simple: … Continue reading

Posted in ASA, Certificates, Cisco, Microsoft, PKI | Tagged , , , , , , , | 5 Comments