Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1287
Views
0
Helpful
1
Replies

AnyConnect - Untrusted Server Cert warning

CyberSecLead
Level 1
Level 1

‎10-09-2019 10:45 AM - edited ‎02-21-2020 09:46 PM

Dear Members,

My scenario as follows.

++ I am trying to establish Anyconnect VPN for Domain joined computers and Workgroup computers (Non-Domain) via DAP.

++ We have certs installed on Domain PC's and it doesn't ask for Security Warning when trying to connect and its normal.

++ However, i do receive the "Security Warning: Untrusted Server Certificate" pop-up for Workgroup PC's and my question is, I need to ensure that it doesn't prompt with "Connect Anyway" option if there is no certificate installed. I need to enforce mandatory that none of the users without the cert should not be allowed to connect VPN. (Note: I have given the option for the users to install the cert manually on their non-domain pcs).

 

Awaiting advise from the experts.

 

Regards.

 

 

Labels:
0 Helpful
1 Reply 1

Marius Gunnerud
VIP
VIP

‎10-09-2019 01:55 PM

As far as i know this setting is user controllable, and can not be removed.  You can however set the default to be enabled but if the user knows what he/she is doing then they can change the setting.

The xml file that contains the setting is found here: %USERPROFILE%\AppData\Local\Cisco\Cisco AnyConnect Secure Mobility Client

--
Please remember to select a correct answer and rate helpful posts
0 Helpful
Customers Also Viewed These Support Documents