republican-creole
Search:  

 
theme to white backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Equipment Support » Hardware By Brand » Cisco » PKI _VS_CA
Search Topic:
Uniqs:
113		 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·Submit a new forum topic ·Forum FAQ ·Submit a FAQ ·Docs Guidelines and Advisories ·EOS/EOL thread
[HELP] Multiple networks on Cisco 1800 »
« [Config] ASA 5510 Fire wall Bug  
AuthorAll Replies


smunro622

join:2006-02-15
Madison Heights, MI

PKI _VS_CA

I am looking into additional security for our vpn, we currently use rsa and not renewing our contract as the cost of fobs and maintenance.
We are implementing 2 form authentication with sms notification from ldap, if you cell number isnt in the list your do not get it. We want to add a certificate with our vpn users also. We currently have a asa 5510 w/aip and 8.2 running. I am looking for pros and cons of this, users are connecting via cisco vpn, or the OSX 10.6 built in cisco client. If we go the cert route who issues these, geotrust? verisign? Can someone please point me in the right direction please
to forum · permalink · · 2009-11-07 15:38:49 · Reply to this

elnino

join:2006-08-27
Akron, OH

 For certs, you can either use public ones like Geotrust or Verisign but most people probably set up an internal CA server on their network like Microsoft or Entrust. With Microsoft, you can issue new certs for free and with Entrust you are allocated X amount and once you hit that limit, you buy more.
to forum · permalink · · 2009-11-09 13:44:51 · Reply to this


kamikatze

join:2007-11-02		reply to smunro622
Don't forget about OpenSSL either.

»sial.org/howto/openssl/ca/
to forum · permalink · · 2009-11-09 16:54:26 · Reply to this

keeska
Premium
join:2007-04-06
Sedona, AZ		reply to smunro622
Don't forget the CA built into IOS. Depending on the number of certificates you will be issuing this may be a good option.
to forum · permalink · · 2009-11-09 22:13:50 · Reply to this
-
Forums » Equipment Support » Hardware By Brand » Cisco[HELP] Multiple networks on Cisco 1800 »
« [Config] ASA 5510 Fire wall Bug  

Thursday, 26-Nov 14:15:59 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.republican-creole
page compression OFF
Most commented news this week
· [108] New AT&T Ad Campaign Hits Back At Verizon
· [105] Time Warner Cable Fires Broadside At Broadcasters
· [95] Apple Joins AT&T Verizon Snark Fest
· [87] New Bill Takes Aim At Higher Verizon ETFs
· [69] TiVo Sees Record Customer Losses
· [57] In-Flight Internet Headed For Bumpy Landing?
· [37] ICANN Slams DNS Redirection
· [34] Senators Want ACTA Made Public
· [33] Despite Billions In USF Fees, U.S. Libraries Lack Bandwidth
· [30] Earthlink Suffers From Major E-mail Outage
Most people now reading
· I'll Just Unplug That... [No, I Will Not Fix Your #@$!! Computer]
· Windows 7 boot manager editing questions [Microsoft Help]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· Newegg Black Friday Sale started [Users Find Hot Deals]
· Connecting to Google Voice Via SIP [VOIP Tech Chat]
· Not strictly "Home" related - but WOW anyways... [Home Repair & Improvement]
· Slow speeds in the evenings [TekSavvy]
· What is the spell hit cap for a lvl 80 full arcane spec mage [World of Warcraft]
· SSD [Computer Hardware Discussion/Reviews]
· [ Classes] Druid tanking: rotation and glyphs [World of Warcraft]