certificate and xauth user relationship

Unanswered Question
Aug 13th, 2007

Hi there,

I have a question about certificate and xauth. I have planned to setup remote access vpn with ASA. I would like to know how I can associate something between the certificate and xauth username/password. I do not want someone uses his certificate but password from other one to authenticate. For example, user A uses his certificate and user B?s username/password (when doing the xauth) for authentication.

How should I do? Please advice.

Thanks so much,


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Anonymous (not verified) Fri, 08/17/2007 - 08:15

ASA uses RADIUS server for authentication. You can use PEAP or EAP-TTLS in Radius server so that users could either use certificates or username/password.

mbubani Thu, 10/11/2007 - 08:35

I have the same problem and I agree with you about PEAP and EAP-TTLS but... PEAP or EAP-TTLP are supplicant-to-server protocol. Is Cisco VPN Client a PEAP or EAP-TTLS supplicant? I didn't find anything about it.



This Discussion