Security

Expand all | Collapse all

AutoVPN and Certificates

Jump to Best Answer
  • 1.  AutoVPN and Certificates

    Posted 12-09-2020 20:11
    Hi,

    I'm looking into AutoVPN's, as documented here:
    AutoVPN on Hub-and-Spoke Devices

    In the examples, SCEP is used to enrol the local and CA certificates.
    Is SCEP required, or is this just one way it can be done?

    Could I, for example, get a certificate from Lets Encrypt and enrol it manually?


    Thanks


  • 2.  RE: AutoVPN and Certificates

     
    Posted 12-10-2020 03:48
    Hi,
    1. why the cross/dup post?
    2. SCEP is one way, CMP is another Configuring CA and Local Certificates - TechLibrary - Juniper Networks
    Regards
    Ulf

    ------------------------------
    Ulf Bremer
    ------------------------------



  • 3.  RE: AutoVPN and Certificates

    Posted 12-14-2020 17:08
    The cross-post was to get this question to as many experts as possible. This is a native feature in Elevate now.


  • 4.  RE: AutoVPN and Certificates
    Best Answer

     
    Posted 12-10-2020 06:23

    Hi
    You can use any method you want, as long as you get the certificates installed on the SRX. You can manually copy the certificates direct into the SRX, as opposed to the example SCEP.
    Regards 



    ------------------------------
    Maxwell Tsu
    ------------------------------



  • 5.  RE: AutoVPN and Certificates

    Posted 12-14-2020 17:09
    That's fantastic news, thanks!