What are the differences in capabilities between a system that implements the IPSEC Toolkit for C vs a system that implements SCEP or PKCS#10?
Entrust Authority™ IPSEC Toolkit for C Entrust Authority™ Enrollment Server for VPN (SCEP and PKCS#10) Supports X.509 v3 certificates Yes Yes Supports certificate revocation Yes Yes Reads certificates & CRLs from directory Yes VPN device dependent Certificate Registration Transparent (uses Activation code for enrollment) Manual 1 Certificate update Automatic Manual 1 Shared credentials with other Entrust-Ready desktop applications Yes No Single Login for desktop applications Yes No SCEP support No Yes PKCS#10 support No Yes 1. Requires manual authentication and integrity checking. This is typically done with telephone calls between device administrators and CA administrators. • Does the Enrollment Server for VPN have to be co-located with the Security Manager? (top) No. The Enrollment Server for VPN can be co-located with the Entrust CA or configured to operate in a physically remote location. Communication between the Enrollment Server for VPN and Security Manager is secured using Ent
