Two things you may want to ask before you want to do certificate. 1. Do you really need that kind of security? It's a good technology but difficult to train the users. You will get A LOT of support calls from users. So if you are not in banking or military, stay away from it. A hard token will be secure enough.
2. How much do you want to spend? W2K works for Concentrator and easy to set up but it's very limited and you won't get much support from Micro$oft. Verisign or Baltimore or Entrust are very expensive but you get good support. Hope that helps. Yoshi -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Naomi James Sent: Saturday, July 13, 2002 3:51 PM To: [EMAIL PROTECTED] Subject: Certificate Authority [7:48744] I have a VPN Concentrator. It is configure and working great with pre-shared keys. I would like to set it up to work with digital certificates. I am new at this subject, but I know I need a Certificate Authority (CA). Can I use an internal CA (Win 2000) or do I have to use a external one (Verisign). Any thoughts on setting up a Certificate Authority and configuring a certificate on the VPN 3000 would be helpful. Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48746&t=48744 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
