I'm trying to configure a Cisco ASA 5520 to authenticate SSL VPN users via either certificate or local AAA, ie, normally the user will connect with a certificate but from time to time, users may forget their card at work and I would like to offer them an alternative way of logging via user and password.
When I try to configure this:
I access to Remote Access VPN > Clientless SSL VPN Access > Connection Profiles > Basic
The device gives 3 authentication methods: AAA, certificate and both
The question is: Is there anyway of configuring certificate as the main authentication method and AAA as a backup method?
Thank you in advance