You need a CA with support for SCEP. These aren't that widespread. We ended up using Microsoft Certificate Services on a Win 2000 server, although OpenCA is looking promising. There is also OpenSCEP, which I don't know if it is still being supported. Please let me know if you find a decent & inexpensive CA that can do all this.Is anyone using openssl with Cisco VPN gadgets? I could use some instructions (anything on the web?) with the steps involved in setting up our own CA to test the possibilty of this. I have setup a self-signed root CA. But, what to do next is a little unclear. Cisco's use of the term "identity certificate" has me perplexed at the moment. We just want to simply do a manual test of the certificates involved before we get too deep in this. We're hoping we don't have to use Thawte, Entrust, etc. as that will quickly become too expensive for our univeristy. Thanks.
There's plenty of examples on Ciscos web site.
Regards,
Jon.
______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
