Solved: Cisco Anyconnect Trustpoint Certificate

keithcclark71 · ‎07-05-2022

I don't have an internal certificate authority nor do I have an external certificate for deployment available for Anyconnect VPN (Mobility Client Version 10) Is this a mandatory thing that i need to deploy an internal certificate authority to have the CSR converted for use?

MHM Cisco World · ‎07-05-2022

https://www.cisco.com/c/en/us/td/docs/security/asdm/identity-cert/cert-install.html

https://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/99756-asa8-x-anyconnect-vpn.html

some example and for CSR I will check and update you if I get something.

View solution in original post

Rob Ingram · ‎07-05-2022

@keithcclark71 you do not need to, as you can use the self signed certificate.

Its advisable to use a trusted certificate, rather than use a self signed cert though.

keithcclark71 · ‎07-05-2022

I have the self signed Cert created. I should be able to test anyconnect with this I hope then I will change around to external wildcard cert when I am ready to production deploy. That is my thought process here.

MHM Cisco World · ‎07-05-2022

https://www.cisco.com/c/en/us/td/docs/security/asdm/identity-cert/cert-install.html

https://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/99756-asa8-x-anyconnect-vpn.html

some example and for CSR I will check and update you if I get something.