System Administration Guide: IP Services

Configuring IKE With Public Key Certificates (Task Map)

The following table provides pointers to procedures for creating public key certificates for IKE. The procedures include how to accelerate and store the certificates on attached hardware.

Task	Description	For Instructions
Configure IKE with self-signed public key certificates	Creates and places two certificates on each system: A self-signed certificate The public key certificate from the remote system	How to Configure IKE With Self-Signed Public Key Certificates
Configure IKE with a PKI Certificate Authority	Creates a certificate request, and then places three certificates on each system: The certificate that the Certificate Authority (CA) creates from your request The public key certificate from the CA The CRL from the CA	How to Configure IKE With Certificates Signed by a CA
Configure public key certificates on local hardware	Involves one of: Generating a self-signed certificate on the local hardware and then adding the public key from a remote system to the hardware. Generating a certificate request on the local hardware and then adding the public key certificates from the CA to the hardware.	How to Generate and Store Public Key Certificates on Hardware
Update the certificate revocation list (CRL) from a PKI	Accesses the CRL from a central distribution point.	How to Handle a Certificate Revocation List