Hi, I am planning (I do not know when) to use a PKI to manage the key of a VPN router.
I follow a little the last discussion: IpSec may be use without (too much) trouble on recent Windows and MacOS client (in addition of OpenBSD client). No (strong) need for pptp or L2TP. The key are manage by isakmp, and I would like to use a PKI to manage the keys. Then to migrate the keys to the VPN servers (file or LDAP ?). At first glance, I consider OpenCA and IDX-PKI. But PKI are complex tools and before I do some nasty things or I loose too much time try to setup one, I would like to know which PKI you have used and why? Cordialement, Jean-Girard Pailloncy
