Also,
I was looking at the eToken, some sites use ISR with usb support, I was
wonder if anyone has used this before, I am aware you need to install a
client on the PC to put the CP cert on it, how then would I import this to
cisco.
On 3/30/07, Christopher McGill <christophermcgill2007 AT googlemail DOT com>
wrote:
I assume, I use the commands:
ip host CP-ICA 192.168.0.56
crypto pki authenticate CP-ICA
Then select yes to accept the CA public key, as trusted.
Am I forgetting anything? Also, if I run a large number of VPN's with
different partners using different CA's, I assume I am going to face NVRAM
space issue, not all are kit is flash based.
Christopher Mcgill
On 3/30/07, Christopher McGill <christophermcgill2007 AT googlemail DOT com >
wrote:
>
> Hi,
>
> I have setup a checpoint gateway to cisco router vpn using PKI, I am
> running a Win2003 SCEP supported CA. I have imported the CA into checkpoint
> as a tusted CA, however, I forget the command to import he checkpoint public
> ca cert in the cisco router. Can't seem to find it online, can anyone
> remember it. Thanks
>
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
