We are testing out using machine certs to authenticate anyconnect VPNs,
Does anyone have templates for the asa and pc certificates? And maybe some best practices for setting up the connection profile?
For the computers they should just require a normal Computer certificate issued by AD via GPO. For the configuration of the ASA a truspoint will need configuring and a certificate issued by the same CA that the computers trust. This post should help with configuring certificates on the ASA.
Thank you for your reply, I found my issue. It was the way we were putting the certs on the test devices. We have the cert based authentication working with the asa.