[8.281][BUG][OPEN] Does generating a new VPN CA break existing site2sites?

In the VPN forum, new member ppadler pointed out that there's a conflict (my underline):

Here you can regenerate the VPN signing CA that was created during the initial setup of the unit. The VPN signing CA is the certificate authority with which digital certificates are signed that are used for remote access and site-to-site VPN connections. To ensure that VPN connections that use the old VPN signing CA are still working after the exchange of the signing CA, the old VPN signing CA will be kept as verification CA.

Caution! The device and all user certificates will be regenerated with the new signing CA. This may break current Site-to-Site VPN and Roadwarrior connections.

Isn't the bolded part an old warning that now can be deleted because of the underlined part?

Cheers - Bob

0 Astaro Beta Bot over 13 years ago

Astaro Beta Report
--------------------------------
Version: 8.281
Type: BUG
State: ASSIGNED/OPEN
Reporter: BAlfson
Contributor: 
MantisID: 19633
Target version: 
Fixed in version: 
--------------------------------

0 BAlfson over 13 years ago

For ppadler, it broke SSL Remote Access - I don't understand why that wouldn't be a bug???

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 msaki over 13 years ago

Hi Bob,
thanks for your feedback. We would clarify by the MantisID 19633.

Have fun,
Masoumeh
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel