Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Getting rid of webpage errors when connecting to webvpn

This is on an ASA5505

I have a question about resolving errors in the web browser when trying to access my ssl vpn interface to download Anyconnect.

I'm using self-signed certs.

The webvpn page that will allow users to connect to get the anyconnect client.

For the webvpn page I am not using a FQDN only the public IP of the outside interface.

For example I want clients to connect to https://x.x.x.x/AnyConnectVPN and get the anyconnect client. They will get the webbrowser error noting the certificate is not trusted. After installing the cert to root that goes away now I'm trying to prevent them from getting the error "The URL you're using to access the site does not match with the name in the certificate. "

Do I specify the exact page I want vpn users to access in the subject-name CN?

crypto ca trustpoint Identity_Certificate

  keypair LOCAL-CA-SERVER

  id-usage ssl-ipsec

  no fqdn

  subject-name CN=x.x.x.x/AnyConnectVPN,OU=IT_Dept,O=TEST COMPANY,C=US,St=FL,L=Daytona,EA=admin@blabla.com

Thanks for the help.

Newt

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: Getting rid of webpage errors when connecting to webvpn

The trustpoint that you created needs to have subject-name of "CN=x.x.x.x", you don't need to include the "/AnyConnectVPN"

Hope that helps.

1 REPLY
Cisco Employee

Re: Getting rid of webpage errors when connecting to webvpn

The trustpoint that you created needs to have subject-name of "CN=x.x.x.x", you don't need to include the "/AnyConnectVPN"

Hope that helps.

243
Views
0
Helpful
1
Replies
CreatePlease to create content