Junos OS

Expand all | Collapse all

IPsec with Certificates, supported CAs?

Jump to Best Answer
  • 1.  IPsec with Certificates, supported CAs?

    Posted 08-26-2019 08:07



    We are trying to setup a new IPsec tunnel with Juniper MX5 router. We have been asked to use certificates to validate our side of the connection.


    I have found in juniper documentation that Entrust, Verising and Microsoft are supported.

    Acording to this link: https://www.juniper.net/documentation/en_US/junos/topics/topic-map/using-digital-certificates-for-ipsec.html


    My quesiton is, are other CAs supported?

    Especifically GoDaddy?








  • 2.  RE: IPsec with Certificates, supported CAs?
    Best Answer

    Posted 08-26-2019 08:22

    Hi Ramiro,


    I have already answered your query earlier. Please find the forum thread - https://forums.juniper.net/t5/Junos/IPsec-tunnel-with-certificates/td-p/466841


    And my answer stays the same, you can get the certificates from any provider you want. Even you can have your own CA to sign the certificate. However, it is not secure because someone has to validate your identity and in order to achieve that we will be involving CA.