I got a customer has a VPN3005 setup for remote access vpn based on user certificates. I got two major questions.
1_ Customer says they revoke a user certificate but that specific user still connects to the vpn box. They showed me the log file and it says client certificate is successfully confirmed. They setup the CRL parameters on the box. Do you have any tips on this ?
2_ I think, the user certificate confirmation and username password confirmation are whole different processes, but they require that, a user with an A certificate should not be able to connect with B user' s username and password. How can this be made possible ? Any comments ?