Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
514
Views
0
Helpful
2
Replies

Restict remote IPSec vpn from company pcs only

abcdrohan
Level 1
Level 1

‎08-20-2012 07:06 AM - edited ‎03-11-2019 04:43 PM

Hi

So we wish to implement IPSec remote access vpn with the condition that employees should be able connect to this vpn only from company issued laptops and not from any other computers. I assume using client side certs is one of the ways to do it but I couldn't find any doc that was really helpful. Cisco's documentation seems quite obscure. We are on 8.1 (5520)

Has anyone of you implemented this? Is there any other way this could be done? Any pointers/blog entries whereyou did this will be helpful

Thanks!

Labels:
0 Helpful
2 Replies 2

Julio Carvajal
VIP Alumni
VIP Alumni

‎08-20-2012 04:20 PM

Hello,

For IPSec I would say the option is the PKI infrastrucure, then you can migrate to an SSL option (Anyconnect) You can investigate on the Cisco secure desktop area to acomplish this task

Regards,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful

Ramraj Sivagnanam Sivajanam
Level 4
Level 4

‎08-20-2012 07:37 PM

Hi Bro

There's a feature called "machine authentication". I know this works well in Cisco Wireless authentication. You might wanna do some homework to see, if it does support VPN. Here are some URL link for your kind reference

https://supportforums.cisco.com/thread/2054398

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.1/user/UsrDb.html#wp354014

Warm regards,
Ramraj Sivagnanam Sivajanam
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card