Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have multiple AnyConnect connection profiles for various remote users that provide access to different internal networks. The authentication method needs to be certificate only, but there doesn't seem to be a way to prevent an issued certificate ho...
I'd like to know if it's possible to give a remote client a certificate that they can import to use for SSL VPN authentication instead of having them generate the request and giving it to us to sign and hand back to them. Using an enrollment server i...
I have a server that I need to move to another network whose IP address I can't change. For example, the server is on the 192.168.0.0/24 network with an IP of 192.168.0.100 and I need to move it to the 192.168.10.0/24 network. Each network has a gate...
I have two internet connections, one primary and one secondary: The primary internet is static IP from a cable modem and the secondary internet is an MPLS connection. Each connection terminates at its own ASA 5550 on the same local subnet (192.168....
I am going live soon with a new failover configuration utilizing IP SLA monitoring. I have tested my configuration as best I could in GNS3 and was hoping someone could take a quick look at what I've done before I go live. Any help is greatly apprec...
I've been trying to get certificate matching working but when I configure profile A to match the CN for certificate A and profile B to match the CN for certificate B it doesn't seem to do anything. I can still connect to both AnyConnect profiles ther...
In messing around with this a bit more I'm going to answer my own question here in case anyone is looking to do something similar.As stated in the original question, our main requirement for this was to have as little end-user interaction as possible...
@paul driver Yep, each router acts as the gateway for the local subnet, routing traffic over a simple L2 metro Ethernet connection provided by a local ISP. The routers are Cisco 2951 ISRs and behind each router is a Catalyst 4507+E switch running a m...
