Your company plans to increase the security level for VPNs in its network by using certificates instead of preshared keys The company wants to introduce its own centrally administered certificate authority from which all device certificates will be derived. You have been asked to automate certification enrollment, re-enrollment, and revocation.
How can you implement this?
Use self-signed certificates on each device and have copies stored centrally
Contract out this problem to VeriSign to deliver a solution.
Roll out a certificate automation system that is based on SCEP.
Buy certificates that do not need to be renewed from Entrust.