Search This Blog

Friday, June 15, 2007

firewall-wizards Digest, Vol 14, Issue 9

Send firewall-wizards mailing list submissions to
firewall-wizards@listserv.icsalabs.com

To subscribe or unsubscribe via the World Wide Web, visit
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
or, via email, send a message with subject or body 'help' to
firewall-wizards-request@listserv.icsalabs.com

You can reach the person managing the list at
firewall-wizards-owner@listserv.icsalabs.com

When replying, please edit your Subject line so it is more specific
than "Re: Contents of firewall-wizards digest..."


Today's Topics:

1. Re: Digital certificate on asa 7 without CA (Skip Carter)


----------------------------------------------------------------------

Message: 1
Date: Thu, 14 Jun 2007 12:05:52 -0700
From: Skip Carter <skip@taygeta.com>
Subject: Re: [fw-wiz] Digital certificate on asa 7 without CA
To: Firewall Wizards Security Mailing List
<firewall-wizards@listserv.cybertrust.com>
Message-ID: <20070614120552.f869bafe.skip@taygeta.com>
Content-Type: text/plain; charset=US-ASCII

If I understand your plan, you will be using self-signed certificates
for authentication. If so, I'd suggest you create a private CA (there are
scripts that come with openssl for this) instead. Using self-signed
certificates is not secure because they can be readily counterfieted.

On Wed, 13 Jun 2007 08:12:18 +0200
"Youssef AGHARMINE" <YAG@d-fi.fr> wrote:

> Hi All,
>
>
>
> Does someone succeed to Get a VPN working between a Cisco client VPN and
> and ASA with certificate.
>
> I intended to generate my certificate with openssl (on linux machine )
> and then to import certificate on the asa and also on client.
>
> My goal is to avoir pre-shared key by certificate, but I don't to have
> to enroll my certificate automatically.

--
Dr. Everett (Skip) Carter Phone: 831-641-0645 FAX: 831-641-0647
Taygeta Network Security Services email: skip@taygeta.net
1340 Munras Ave., Suite 314 WWW: http://www.taygeta.net/

Monterey, CA. 93940

------------------------------

_______________________________________________
firewall-wizards mailing list
firewall-wizards@listserv.icsalabs.com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards


End of firewall-wizards Digest, Vol 14, Issue 9
***********************************************

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)