05-02-2022 06:25 AM
Hello,
my costumer migrated his antivirus and now he has issues with anyconnect.
He need to upload a certificate to avoid the alert on anyconnect connection.
He need to contnue in local username AAA, no certificate authentication for user.
Is there a way to upload a certificate to solve this problem?
In attachement the alert.
Many tks
Johnny
Solved! Go to Solution.
05-02-2022 06:35 AM - edited 05-02-2022 06:36 AM
The headend device (ASA or FTD) must have a certificate issued by a trusted Certificate Authority (CA) matching the Fully Qualified Domain Name (FQDN) of the device. If you access it via IP address it will typically always give you the untrusted alert.
Using local authentication (or not) and the type of authentication (username and password vs. certificate) is completely unrelated to this problem.
05-02-2022 06:33 AM
Hi @l.buschi ,
at AnyConnect > click the Cog Wheel > Preferences > you are able to disable the Block Connections to Untrusted Servers.
Hope this helps !!!
05-02-2022 06:35 AM - edited 05-02-2022 06:36 AM
The headend device (ASA or FTD) must have a certificate issued by a trusted Certificate Authority (CA) matching the Fully Qualified Domain Name (FQDN) of the device. If you access it via IP address it will typically always give you the untrusted alert.
Using local authentication (or not) and the type of authentication (username and password vs. certificate) is completely unrelated to this problem.
05-02-2022 06:41 AM
Many tks Marvin.
where is the section on ASDM I can upload a certificate?
05-02-2022 06:46 AM
You're welcome.
Here's a complete guide to setting up a certificate:
Once you have it installed, be sure to select it under the Remote Access VPN setup as the device certificate to be used.
05-02-2022 08:52 AM - edited 05-04-2022 05:53 AM
check this link.
 
					
				
				
			
		
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide