02-11-2014 04:19 AM - edited 02-21-2020 07:29 PM
Hi all,
I'd like to deploy Remote access VPN for ASA 5512 using Cisco anyconnect secure mobility client version 3.1.05152. However it requires a valid certificate from a trusted CA such as verisign, entrust...
Is there anyway I can use the self-sign certificate? Thank you for helping me!
Solved! Go to Solution.
02-11-2014 04:35 AM
Hi Harry,
i think it would be still possible to configure VPN just with simple AAA authentication.
From my opinion you have just configured your client to check trustworthy of certificate installed on your ASA.
Please uncheck option like on sccreenshot:
Thanks,
Jan
02-11-2014 04:35 AM
Hi Harry,
i think it would be still possible to configure VPN just with simple AAA authentication.
From my opinion you have just configured your client to check trustworthy of certificate installed on your ASA.
Please uncheck option like on sccreenshot:
Thanks,
Jan
02-20-2014 01:37 AM
Hi Jan,
I've tried but unsuccessfully
Could you please advise which AnyConnect version you're using?
Thank you!
02-20-2014 01:57 AM
Hi Harry,
my version is 3.1.04059 but i don't think it version problem now.
What do you see in log on ASA? Also what logs are telling you in Anyconnect client.
Do you have certificate installed/generated on ASA?
Best regards,
Jan
02-20-2014 03:00 AM
Hi Jan,
I use self-signed certificate. Can you please advise, thank you
02-20-2014 04:53 AM
My last suggestion is to check Anyconnect local policy file AnyConnectLocalPolicy.xml.
Please check this in xml:
Also please read this document:
Best regards,
Jan
02-23-2014 05:16 AM
Hi Jan,
Problem soved, it's certificate issue. Re-create and all good. Thank you so much for your help!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide