Remote Access and MS Certificate Authentication

Unanswered Question
Apr 30th, 2009
User Badges:


I have an ASA infrastructure where we need to authenticate the client via a MS cert and AD credentials. I have followed most of the documents from the website, but getting "CRYPTO_PKI: Cert record not found, returning E_NOT_FOUND" errors. Would somebody please be able to send me a working config from the ASA ?

Secondly, when turning on both AAA and Certificate authentication, I get " invalid certificate on the webvpn login page" when trying to login with AD credentials.


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
drolemc Wed, 05/06/2009 - 13:34
User Badges:
  • Silver, 250 points or more

I think the error indicates an invalid signature error. This means that the CA certificate in trust point could not be used to validate the client certificate.

You should ensure that the client certificate was issued by this CA and can be used to verify the signature on it.


This Discussion