Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello, I have problem with Cisco Anyconnect version 3.1.05152 with 64-bit version of Windows 7. When I try to connect and authenticate with certificate (which I have on my smartcard inserted in smard card reader) Anyconnect client can't find certifi...
Hello,I have a couple of routers that are members of the same GETVPN groupand share the same network on which traffic is encrypted (same WAN network).My access list from key server permits encryption for everything except eigrpand ssh.If I ping one r...
Hello,my problem is as follows. I have configured ASA 5550 in transparent mode with two security contexts (admin and another one named "host").I have configured in context "host" 8 bridge groups (running 8.4). Each bridge group has two interfaces, in...
Hello,I have configured two CAS to work in HA mode (L3, in band for VPN).Now I need to change IP address of CAS. How should I do this? Do I need to remove CASfrom CAM, change address of both CAS and then re-add them to manager or can I do address cha...
Hello,I am trying to configure NAC OOB SSO with AD. The software on my CAS and CAM is 4.7(2)and my AD is Windows Server 2008.I have some information that with this version of NAC software (4.7.2) I do not need to run ktpasson AD server. Is this true?...
Hi,sorry for not replying earlier.It seemed that the problem happened only on win7 laptops that belonged to my company (memebers of the company domain) and not on private PCs. Anyway, the problem was solved by upgrading Active Client software, and it...
Hi Vishnu,I cannot connect to ASA at all, by using certificate authentication. I'm using smartcard reader with Active Client x64 (6.2.0.138) software for smartcard reader. When I try to connect to ASA for the first time from PC it just says: "no vali...
Marcin,thank you very much for your answer. I've done "debug ip packet" and they areencrypted so everything is like you said but I wanted to double check, especiallybecause I've heard from some colleagues that it should not be encrypted.Cheers,Zoran
Hi,here is part of my configuration for two bridge groups. I did this for test and it doesn't work.This is all in one context and I tried telnet from my PC. SYN enters vlan 325 and goes out on225, and then SYN ACK enters vlan 126 but ASA drops it.int...
Hi Anubhav,thank you for your answer but unfortunately my company's security policy asks for stateful firewall and tcp state bypass disables stateful firewall.Zoran
