Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1397
Views
0
Helpful
3
Replies

AnnyConnect VPN

mohammedrafiq
Level 1
Level 1

‎04-27-2016 07:30 AM

Hi,

We are replacing our RSA token based VPN with certificate based VPN authetication by using Windows 2012 as certificate server (internal) and ASa 5510 as shown in attached diagram.

Does anyone has this setup and example configuration .

Labels:
Preview file
21 KB
0 Helpful
3 Replies 3

Kanwaljeet Singh
Cisco Employee
Cisco Employee

‎04-28-2016 08:38 AM

Hi Mohammed,

Please have a look at the below link:

https://supportforums.cisco.com/blog/152941/anyconnect-certificate-based-authentication

The versions are different but should give you a good idea about the configuration steps.

Let us know if you have any further questions.

Regards,

Kanwal

Note: Please mark answers if they are helpful.

0 Helpful

mohammedrafiq
Level 1
Level 1
In response to Kanwaljeet Singh

‎04-29-2016 03:30 AM

Thanks Kanwal,

How different will be with Windows 2016 server compare to 2003 server ? Do we need root CA server or only one is enough?

Regards,

0 Helpful

Kanwaljeet Singh
Cisco Employee
Cisco Employee
In response to mohammedrafiq

‎04-29-2016 05:13 AM

Hi Mohammed,

I am not sure how the interface would differ across codes but you definitely would need a CA which should provide you root cert, intermediate and identity certificate.

Regards,

Kanwal

Note: Please mark answers if they are helpful.

0 Helpful
Customers Also Viewed These Support Documents