20-1
Cisco Router and Security Device Manager 2.5 User’s Guide
OL-4015-12
CHAPT ER
20
Certificate Authority Server
You can configure a Cisco IOS router to serve as a Certificate Authority (CA)
server. A CA server handles certificate enrollment requests from clients, and can
issue and revoke digital certificates.
To create, back up, restore, or edit a CA server, go to Configure > VPN > Public
Key Infrastructure > Certificate Authority > Create CA Server.
To manage certificates on an existing CA server, go to Configure > VPN > Public
Key Infrastructure > Certificate Authority > Manage CA Server.
To monitor a CA server, go to Monitor > VPN Status > CA Server.

Create CA Server

This window allows you to launch a wizard for creating a Certificate Authority
(CA) server, or a wizard for restoring a CA server. Only one CA server can be set
up on a Cisco IOS router.
The CA server should be used to issue certificates to hosts on the private network
so that they can use the certificates to authenticate themselves to other
Prerequisite Tasks
If Cisco SDM finds that there are configuration tasks that should be performed
before you begin configuring the CA server, it alerts you to them in this box. A
link is provided next to the alert text so that you can go to that part of Cisco SDM