Table of Contents
Advertisement
Implementing Certification Authority
Interoperability on Cisco IOS XR Software
Certification authority (CA) interoperability is provided in support of the IP Security (IPSec), Secure
Socket Layer (SSL), and Secure Shell (SSH) protocols. CA interoperability permits Cisco IOS XR
devices and CAs to communicate so that your Cisco IOS XR device can obtain and use digital
certificates from the CA. Although IPSec can be implemented in your network without the use of a CA,
using a CA provides manageability and scalability for IPSec.
This module describes the tasks that you need to implement CA interoperability on your Cisco IOS XR
network.
For a complete description of the public key infrastructure (PKI) commands used in this chapter, refer
Note
to the Public Key Infrastructure Commands on Cisco IOS XR Software module of the Cisco IOS XR
System Security Command Reference. To locate documentation for other commands that appear in this
chapter, use the command reference master index, or search online.
Feature History for Implementing Certification Authority Interoperability on Cisco IOS XR Software
Release
Release 2.0
Release 3.0
Release 3.2
Release 3.3.0
Release 3.4.0
Release 3.5.0
Contents
•
•
•
•
Modification
This feature was introduced on the Cisco CRS-1.
No modification.
Support was added for the Cisco XR 12000 Series Router.
No modification.
A procedure was added on how to declare the trustpoint certification
authority (CA) for both the Cisco CRS-1 and
Cisco XR 12000 Series Router.
No modification.
Prerequisites for Implementing Certification Authority, page SC-2
Restrictions for Implementing Certification Authority, page SC-2
Information About Implementing Certification Authority, page SC-2
How to Implement CA Interoperability, page SC-5
Cisco IOS XR System Security Configuration Guide
SC-1
Hide quick links:
Advertisement
Chapters
Table of Contents
