Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Is Certificate + Username/PWAuthentication Possible?

I have a client that wants his VPN clients to be required to hold a certificate and a valid account in AD before the VPN is established. Is this possible. I have certificate authentication enabled on the 3005. This works fine, but does not require a username and password, just the password to open the certificate store on the client. How would I add user authentication. I have an 1112 ACS 3.3.

Thanks for any help,

Scott

1 REPLY
Silver

Re: Is Certificate + Username/PWAuthentication Possible?

The authenticationmay be possible but ACS can not forward/redirect authentication to different databases depending on NAS type/address. It always check ACS database first, then external databases as listed in Unckown User Policy.

Use different names or separate ACS servers .

106
Views
0
Helpful
1
Replies
CreatePlease login to create content