simple question to answer for you. Which design consideration does it take to move from a pre-shared key infrastructure for remote access and L2L to a fully certificate-based infrastructure? In particular, what is the most reliable solution to manage certificates for a very large customer?
Configuration is not an issue. I just want to understand which issues i need to face in terms of management an roll out.