Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

Restict remote IPSec vpn from company pcs only

Hi

So we wish to implement IPSec remote access vpn with the condition that employees should be able connect to this vpn only from company issued laptops and not from any other computers. I assume using client side certs is one of the ways to do it but I couldn't find any doc that was really helpful. Cisco's documentation seems quite obscure. We are on 8.1 (5520)

Has anyone of you implemented this? Is there any other way this could be done? Any pointers/blog entries whereyou did this will be helpful

Thanks!

Everyone's tags (3)
2 REPLIES

Restict remote IPSec vpn from company pcs only

Hello,

For IPSec I would say the option is the PKI infrastrucure, then you can migrate to an SSL option (Anyconnect) You can investigate on the Cisco secure desktop area to acomplish this task

Regards,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

Re: Restict remote IPSec vpn from company pcs only

Hi Bro

There's a feature called "machine authentication". I know this works well in Cisco Wireless authentication. You might wanna do some homework to see, if it does support VPN. Here are some URL link for your kind reference

https://supportforums.cisco.com/thread/2054398

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.1/user/UsrDb.html#wp354014

Warm regards, Ramraj Sivagnanam Sivajanam Technical Specialist/Service Delivery Manager – Managed Service Department
254
Views
0
Helpful
2
Replies
CreatePlease to create content