Search the Community
Showing results for tags 'CACERT'.
Found 1 result
Hi gurus, Iam trying to build a lab to practice the a site to site vpn with certificates using a Certification Authority, prettending to solve the holes that I have in my understanding of the proccess. One of my first doubts before begin is about what CA to use, and it must be for free, of course. I try to do the lab following the steps of Cisco.Press.CCNA.Security.640-554.Official.Cert.Guide (pag 504) for this I choose cacert.org as CA in my PKI and my first problem is that I don't know the enrollment url. In the book: ! Specify the CA that you would like to use, and the URL to be used to ! reach that CA R1(config)# crypto pki trustpoint CA R1(ca-trustpoint)# enrollment URL [Hidden Content] R1(ca-trustpoint)# exit ! Request the root certificate through "authenticating" the CA R1(config)# crypto pki authenticate CA In this point I think the problem is that cacert doesnt support yet the scep and the enrollment must be done manually, using the cli "enrollment terminal pem" and copy paste the root certificate of the CA when I want to authenticate the trustpoint (example in [Hidden Content]). So, in this point I have two questions before go ahead.. 1. Do you know any Certification Authority (for free!) that works with scep to use in this lab? 2. Has anyone used cacert.org as CA? Did you do it using the cli "enrollment url http:\\....."? If you did it in this way, what url did you use? Thanks in advance!