Cisco IOS devices are designed with a feature called CA interoperability support that allows them to interact with certificate authorities (CA) when deploying IPsec. This functionality allows for a scalable and manageable enterprise virtual private network (VPN) solution.

In this chapter, you’ll learn to describe how Cisco IOS Software supports open CA standards and CA interoperability, and how SCEP manages the certificate life cycle. You’ll also learn each of the five tasks in configuring IPsec encryption using digital certificates on a Cisco router.