Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi All,
A brief question on authenticating Anyconnect via certificates. I've looked through a bunch of deployment guides and blogs but can't seem to get this straight in my head. If anyone could clarify the issue for me, or point me in the directi...
Hi Guys.
I am having a few issues getting Airplay to work through a 5508 WLC. Here's the summary of my situation:
- 5508 WLC, software version 7.4.121.0
- Topology is fairly simple
Wireless Client -----> AP in Local Mode broadcasting SSID tagged to V...
Guys,I'm having trouble booting my embedded AP in a 890w router into autonomous mode. When I configure it with an IP and connect to it via the session manager, the config is default but the AP appears to be in lightweight mode. I only have a limite...
Hey guys,Bit of a weird problem that I'm hoping you could help with. We have a server in a remote location that streams webcasts to other offices across the WAN. Webcasts work absolutely fine from the remote offices themselves, but not over VPN. O...
Hey Guys,I have 10 new AIR-CAP3502I-A-K9 connected to a WS-C3750X-48PF-L switch. 8 of the APs power on and connect perfectly, but two are problematic.Both devices are granted power, but they never go past the stage of getting power from the switch. ...
My initial thoughts were that I'd have:
- The ASA with one certificate
- The client with a separate certificate
Both generated via a third party CA as there is no internal CA where I am working.
The same client certificate would be installed on ea...
Okay, so in short, clients need to enroll to get a certificate, either with a 3rd party or an internal CA. They mint a certificate on the fly when they connect to the VPN for the first time.
There's no way of using the same certificate from a singl...
Hi,
Okay, yes, that process makes perfect sense, thanks.
Maybe a slightly different question then; is it possible to do this without a CA environment in your control? I.e. Install a server certificate from a 3rd party CA e.g. Verizon on the ASA, ...
Hi
Thanks for your reply.
So we can install a certificate manually on the client that the ASA will trust, assign it to the Anyconnect app, set the ASA to authenticate the VPN via certificate and this will work correctly.
If I understand you cor...
Just for the sake of completion, I have resolved my issues.
I needed to enabled multicast, IGMP snooping and set the multicast mode to unicast to get this to work. This isn't ideal, but in my deployment this shouldn't cause too many issues.
I simp...
