https://community.cisco.com/t5/network-access-control/acs-asa-vpn-multiple-authentication-method/m-p/2236466#M120605 <P>Hello there,</P><P></P><P>I am trying to configure certificate and password based authentication for all users, except for some users who will get authenticated by entering password only. Certificate + Password authentication is working like a charm and AAA Password only authentication is also working fine but they are not working simultaneously.</P><P></P><P>When I configure certificate + password authentication, then it password only athentication does not work and vise versa.</P><P></P><P>I want laptop remote access users get authenticated by certificate+password, and mobile users by password only. The reason behind doing it is that it is hard to import and install Internel CA certificate on mobile devices such as iphone, ipads, andriods..</P><P></P><P>Is it possible to enforce all users to present certificate. In case of failure, it asks username and password. Only mobile users will get access without certificate.</P><P></P><P>I am running ASA 8.2.5 and ACS 5.2</P><P></P><P>Please help.&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </P><P></P><P>Thanks..</P> Tue, 26 Mar 2019 00:30:39 GMT fahadafzal 2019-03-26T00:30:39Z https://community.cisco.com/t5/network-access-control/acs-asa-vpn-multiple-authentication-method/m-p/2236466#M120605 <P>Hello there,</P><P></P><P>I am trying to configure certificate and password based authentication for all users, except for some users who will get authenticated by entering password only. Certificate + Password authentication is working like a charm and AAA Password only authentication is also working fine but they are not working simultaneously.</P><P></P><P>When I configure certificate + password authentication, then it password only athentication does not work and vise versa.</P><P></P><P>I want laptop remote access users get authenticated by certificate+password, and mobile users by password only. The reason behind doing it is that it is hard to import and install Internel CA certificate on mobile devices such as iphone, ipads, andriods..</P><P></P><P>Is it possible to enforce all users to present certificate. In case of failure, it asks username and password. Only mobile users will get access without certificate.</P><P></P><P>I am running ASA 8.2.5 and ACS 5.2</P><P></P><P>Please help.&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </P><P></P><P>Thanks..</P> Tue, 26 Mar 2019 00:30:39 GMT https://community.cisco.com/t5/network-access-control/acs-asa-vpn-multiple-authentication-method/m-p/2236466#M120605 fahadafzal 2019-03-26T00:30:39Z https://community.cisco.com/t5/network-access-control/acs-asa-vpn-multiple-authentication-method/m-p/2236467#M120645 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P>May the following link help you out :-</P><P></P><P><A class="jive-link-external-small" href="http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.2/user/guide/eap_pap_phase.html">http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.2/user/guide/eap_pap_phase.html</A></P></BODY></HTML> Tue, 02 Jul 2013 02:52:12 GMT https://community.cisco.com/t5/network-access-control/acs-asa-vpn-multiple-authentication-method/m-p/2236467#M120645 harvisin 2013-07-02T02:52:12Z https://community.cisco.com/t5/network-access-control/acs-asa-vpn-multiple-authentication-method/m-p/2236468#M120693 <HTML><HEAD></HEAD><BODY><P>HI </P><P></P><P>i am currently working on a similar implementation but finding it hard finding the correct information. Unfortunity i dont have an answer for your question but I was wondering if you could help me out and highlight how you have done this.</P><P></P><P>Is the certificate and username/password getting authenticated by the ACS for the SSLVPN to succeed? </P><P></P><P>Thanks</P></BODY></HTML> Thu, 19 Sep 2013 00:45:00 GMT https://community.cisco.com/t5/network-access-control/acs-asa-vpn-multiple-authentication-method/m-p/2236468#M120693 johnattard 2013-09-19T00:45:00Z