How to switch from one certificate to another with Anyconnect ?

Unanswered Question
Jan 8th, 2009
User Badges:


i am using Anyconnect as client for remote Access VPN .

I have different tunnel-groups configured on ASA which are used depending on the certificate used by client.

So how can i select a certificate among severals on my PC with anyconnect ?

Thanks for your help.



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Anonymous (not verified) Sun, 01/18/2009 - 09:38
User Badges:

You may try configuring the Certificate Match Attribute.The AnyConnect client supports the following certificate match types. Some or all of these may be used for client certificate matching. Certificate matching are global criteria that can be set in an AnyConnect profile. The criteria are:

•Key Usage

•Extended Key Usage

•Distinguished Name

dnivelle Thu, 01/22/2009 - 07:16
User Badges:

Yes, I have already configured "matching criteria" concerning OU groups on ASA , but the problem is on the PC client . To summary, i have installed 2 certificates on the client PC, with same properties except "OU". So i want to use the same username/password and choose the certificate to connect with different properties on ASA. But how can i select the certificate with anyconnect on PC client ? Like the ipsec cisco vpn client, where it's possible to select certificate...


This Discussion