Cisco SECURE 1.0: Deploying Scalable Authentication in Site-to-Site IPSec VPNs
This course is included in our On-demand training solution.
You can configure IP Security (IPSec) virtual private networks (VPNs) with various types of authentication, which often limit its scalability with regard to performance and configuration manageability. A simple method, such as using pre-shared keys (PSKs), requires you to share a secret between each pair of VPN peers. A more scalable authentication method incorporates the public key infrastructure (PKI) for authentication purposes. This course discusses the process of configuring an IPSec site-to-site VPN using PKI-facilitated peer authentication.
Network professionals responsible for securing and managing their network infrastructures who have CCNA certification, CCNA Security certification (IINS) and a working knowledge of Microsoft Windows operating systems
PKI-Enabled VPN Deployment
Configuring the Cisco IOS Software Certificate Server
Troubleshooting Certificate Server
Configuring PKI Enrollment
Configure a Router as a Certificate Server
Enroll Two VPN Peers into a PKI
Verifying and Troubleshooting PKI Enrollment
Configuring PKI-Enabled IKE Peer Authentication
Configure IKE Using Peer Canonical Name Verification
Troubleshooting and Advanced PKI Integration