Hi All, I'm fairly new to Cisco ASA so please excuse my naivety.
We have a Cisco 5555 ASA which is currently configured for AnyConnect VPN via AD. The next step is to authenticate users/laptops with AD + Certificates.
I have configured the ASA as a Local CA Server and I can authenticate via manual enrollment (following this guide: https://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-firewalls/200602-Configure-ASA-as-a-Local-CA-Server-and-A.html
However, we have 500+ laptops so I need to automate this process using SCEP. All the online guides refer to an external Microsoft SCEP server only. eg, https://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-firewalls/200602-Configure-ASA-as-a-Local-CA-Server-and-A.html
How can I used the ASA as both the Local CA and SCEP server for automatic enrollment? Any help would be greatly appreciated!
... View more