VPN double authentication

Unanswered Question
Sep 25th, 2010
User Badges:

Hi Gurus,

From ASA 8.2, ASA support double authentication for remote access. As we know, there are a number of secenarios for double authentication.

I have a customer who'd like to auth a clientless ssl vpn with AD's credentiaon and digital certificate, not sure ASA is able to support it.

Anybody can help with it?



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Shilpa Gupta Sun, 09/26/2010 - 00:55
User Badges:
  • Cisco Employee,

Hello Dave,

- From the problem detail, I understand you want to do authentication based on certificate
and AAA

- You need to configure the authentication like the following
          tunnel-group mycerts-aaaGroup webvpn-attributes
                authentication certificate aaa 

If you would like  to use ASDM , then for this go to Configuration->Remote access VPN->Clientless SSL VPN Access->Connection Profiles
Select Profile and click on edit.
You can choose the option as "Both" under Basic settings for ssl clientless VPN connection profiles.

I hope it helps.


This Discussion