Has anyone been able to successfully configure a vpn community between 2 fp3 checkpoints using certificates? I keep getting IKE errors stating invalid certificate. As soon as I enter a shared secret in the community properties it works fine. I'd like to NOT use shared secrets and only the ICA generated certificate in the vpn tab of the gateway. Any help/suggestions would be greatly appreciated.
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
FP3 VPN Communities using internal certificates.
- Thread starter waranha
- Start date
Hi,
Certificates work fine, the big catch is the certificate revocation list, the firewall will attempt to validify the certifate before accepting any encryption.
You can turn of CRL checking, but I've found it still fails,
Hope this helps, ---------------------------
Security Wizard Guides
---------------------------
Certificates work fine, the big catch is the certificate revocation list, the firewall will attempt to validify the certifate before accepting any encryption.
You can turn of CRL checking, but I've found it still fails,
Hope this helps, ---------------------------
Security Wizard Guides
---------------------------
- Status
Similar threads
- Locked
- Question
- Locked
- Question