Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

ASA ipsec 2 factor authentication with xauth and certificates

Hi, I'm trying to do an vpn ipsec two-factor authentication with certificates and XAUTH.

The problem is that ASA allows connections with an username mismatch between the XAUTH username and the certificates username.

So an user with his certificate could have more access privileges if he knows the password of another user

Or an user with a valid certificate but not allowed to do vpn's could make

How can i do a correct 2-factor authentication that not allow mismatches?

Thanks

Everyone's tags (5)
1169
Views
0
Helpful
0
Replies