Besides this, the protocol description itself demonstrates a veryWhich Cisco themselves seem to ignore. You can give an optional path to the URL on the PIX, although it does default to cgi-bin/pkiclient.exe. Interesting assumption about server platform etc.
interesting knowledge of HTTP. :-( The hard coded URL cgi-bin/pkiclient.exe is not the worst part.
It would be *really* nice if you could use TFTP to retrieve the certificate & crl, as SCEP seems to be dying.
Regards,
Jon.
______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]