ASA Anyconnect VPN using Certificate

Unanswered Question
Oct 31st, 2009
User Badges:

I want to configure an Anyconnect vpn using digital certificate on a ASA.

I'm able to access the network when using a local database but when I use digital certificate I got certification error without prompting to enter the pin code.

I have already configured my ASA with VPN client using digital certificate as authentication.

What can I do to configure SSL VPN over the same digital certificate?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)

I think it is possible to use same digital certificate. You can specify whether you want users to authenticate using AAA with a username and password or using a digital certificate (or both). When you configure certificate-only authentication, users can connect with digital certificate and are not required to provide a user ID and password.

tgrundbacher Thu, 10/20/2011 - 05:00
User Badges:

Hi chadi

What was the resolution for the problem? I'm having the same error message.



tgrundbacher Thu, 12/15/2011 - 01:57
User Badges:

I've also resolved my problem in the meantime. It's important to know that the certificate must be a user-type cert and not a machine cert. I initially wanted to authenticate the machine instead of the user, yet this is not possible, which has been confirmed by TAC later on.


This Discussion