Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
373
Views
0
Helpful
1
Replies

WebVPN-Problem with Digital Certificate and AAA

khanh_isphn
Level 1
Level 1

‎10-28-2007 02:59 AM - edited ‎03-10-2019 03:28 PM

Hello everyone,

I have a problem during configuring WebVPN on ASA 5520 using AAA and digital certificate of Microsoft. (MSCEP)

Currently, The WebVPN service is enabled and it worked well with AAA (local or external) only,

But now, I want to use both AAA and Certificate for most secure-I mean that the users will be authenticated 2 times (firstly, it is checked by valid certificate then user/pass is second one).

Here are details:

I tried installation CA server (Microsoft CA service combined with SCEP) and register ASA with CA server (ASA work as subordinate CA)-->these steps is ok, asa has registed, then client use web-browser request CA and it's issued by CA administrator then it is installed on web-browser.

Testing:

The Client tried to test with access SSL VPN, the welcome WEBVPN message prompt user/pass but the message is "Logon Failed" before I give user and pass,

Does anyone know and advise ?

Thanks

Khanh

Labels:
0 Helpful
1 Reply 1

khanh_isphn
Level 1
Level 1

‎10-28-2007 09:59 PM

Hi all,

Here are attach files for my issuse,

Khanh

Preview file
288 KB
0 Helpful
Customers Also Viewed These Support Documents