09-28-2021 01:49 AM
Hello,
We are using AnyConnect AlwaysOn with certicate auth.
When PCs are stolen (it happens) - I would like to terminate the specific PC based on certicate name or PC name.
In the log, it looks like the PC-name comes in as Username
"Group <RemoteAccess-Cert-GrpPolicy> User <VK32851.domain.name>"
Can I just create a DAP where I terminate on Username?
Solved! Go to Solution.
09-28-2021 02:02 AM
Ideally you'd revoke the certificate and get the ASA to check the CRL, which would then deny the connection.
Yes, DAP seems like a good alternative, match the username and terminate the connection.
09-28-2021 02:02 AM
Ideally you'd revoke the certificate and get the ASA to check the CRL, which would then deny the connection.
Yes, DAP seems like a good alternative, match the username and terminate the connection.
09-30-2021 02:02 AM
Hello Rob,
Thanks for answering.
I'm gonna use OCSP for validation instead of CRL
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide