VPN Client IPSec Authentication Using Digital Certificates

Unanswered Question
Nov 5th, 2009
User Badges:

Dear all,

I would like to ask you some question about VPN client wit Digital certificate, now i had ASA 5510 and using VPN site to site, VPN client and SSL,

So would like to use VPN client Digital certificate,

what requirement that i can do VPN client digital certificate?

when i implement VPN client digital certificate it have problem with VPN site to site and SSL or not?

Best Regards,


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Todd Pula Fri, 11/06/2009 - 07:53
User Badges:
  • Silver, 250 points or more

The doc below gives a good overview of certificate authentication for IPSec VPN clients on the ASA. Multiple authentication methods can co-exist on the ASA platform so you should not have problems with your L2L tunnels using pre-shared keys. You will need to consider how you want to manage certificates in your environment. This can be done internally using a Microsoft CA for example or through various 3rd parties such as Verisign.


rechard_hk Tue, 11/10/2009 - 19:00
User Badges:

Dear Topula and all,

Thanks you for your info and link that you show me, so i would like to ask some questions about implement VPN client with certificate.

1- what requirement for implement VPN client with certificate?

2- i would like to know the first step for create certificate for VPN client? or just follow some step on your link it will be working?

i never use it before!!!!

Best Regards,



This Discussion