Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
723
Views
0
Helpful
2
Replies

How to view an Anyconnect client authorisation certificate on ASA 5545

johnjkjk84
Level 1
Level 1

‎07-01-2018 10:06 AM

We are using an ASA 5545 to vpn tunnel ( with NAT traversal  and ike) and then authenticate Anyconnect clients on Windows desktops. I want to capture and view the certificate the client sends to authenticate. Any ideas ?

Labels:
0 Helpful
2 Replies 2

hslai
Cisco Employee
Cisco Employee

‎07-02-2018 09:49 AM

I moved this to Firewalls as this is not really an issue on AnyConnect.

Configure ASA as the SSL Gateway for AnyConnect Clients using Multiple-Certificate Based Authentication shows we would see the certificate info in the ASA debug.

0 Helpful

Divya Nair
Cisco Employee
Cisco Employee

‎07-09-2018 05:27 AM

hi John,

As Hsing pointed out, crypto debugs would be the best way to view what certificates are being presented by the client.

debug crypto ca 127

debug crypto ca messages 127

debug crypto ca transaction 127

HTH,

Divya

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card