Download Safari Books Online apps: Apple iOS | Android

Entire Site

Safari Books Online

    Free Trial

    Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.


    Copyright
    About the Author
    About the Technical Editor
    Foreword
    Ch. 1. Practice Lab 1
    Overview
    Equipment List
    General Guidelines
    Prelab Setup and Cabling Instructions
    Catalyst Switchport Cabling Diagram
    Serial WAN Interface Cabling Diagram
    Lab Topology Diagram
    IP Address Details
    IP Routing Protocol Diagram
    IP Routing Details
    Practice Lab 1
    Section 1.0: Core Configuration (20 Points)
    Section 2.0: Cisco Firewall (10 Points)
    Section 3.0: Cisco VPN (16 Points)
    Section 4.0: Cisco IPS (Intrusion Prevention System) (6 Points)
    Section 5.0: Implement Identity Authentication (12 Points)
    Section 6.0: Implement Control and Management Plane Security (12 Points)
    Section 7.0: Advanced Security (12 Points)
    Section 8.0: Network Attacks (12 Points)
    Ask the Proctor
    Section 1.0: Core Configuration (20 Points)
    Section 2.0: Cisco Firewall (10 Points)
    Section 3.0: Cisco VPN (16 Points)
    Section 4.0: Cisco IPS (Intrusion Prevention System) (6 Points)
    Section 5.0: Implement Identity Authentication (12 Points)
    Section 6.0: Implement Control and Management Plane Security (12 Points)
    Section 7.0: Advanced Security (12 Points)
    Section 8.0: Network Attacks (12 Points)
    Lab Debrief
    Section 1.0: Core Configuration (20 Points)
    Section 2.0: Cisco Firewall (10 Points)
    Section 3.0: Cisco VPN (16 Points)
    Section 4.0: Cisco IPS (Intrusion Prevention System) (6 Points)
    Section 5.0: Implement Identity Authentication (12 Points)
    Section 6.0: Implement Control and Management Plane Security (12 Points)
    Section 7.0: Advanced Security (12 Points)
    Section 8.0: Network Attacks (12 Points)
    Ch. 2. Practice Lab 2
    • Create BookmarkCreate Bookmark
    • Create Note or TagCreate Note or Tag
    • PrintPrint
    Share this Page URL
    Help

    Chapter 1. Practice Lab 1 > Section 3.0: Cisco VPN (16 Points)

    Section 3.0: Cisco VPN (16 Points)

    Question 3.1: Configuring Cisco IOS CA Server (3 points)

    Configure a Cisco IOS Certificate Authority (CA) server on R1, meeting all the following requirements:

    • Configure R1 as the Cisco IOS CA server using the information provided in the following show command output:

      R1# show crypto pki server myCA
Certificate Server myCA:
    Status: enabled
    State: enabled
    Server's configuration is locked (enter "shut" to unlock it)
    Issuer name: CN=myCA.cisco.com
    CA cert fingerprint: DCB2B525 0E99785C 0770EE49 722BDB63
    Granting mode is: auto
    Last certificate issued serial number (hex): 1
    CA certificate expiration timer: 08:56:42 UTC Jun 8 2010
    CRL NextUpdate timer: 14:56:43 UTC Jun 8 2009
    Current primary storage dir: flash:
    Database Level: Complete - all issued certs written as <serialnum>.cer

    • Configure the lifetime of the certificate server and the certificate issued by the server to one year.

    • After the CA server is up, configure ASA2 and R5 as the CA clients, and obtain the certificates on both devices.


      

    You are currently reading a PREVIEW of this book.

                                                                                            

    Get instant access to over
    $1 million worth of books and videos.

      

    Start a Free Trial