04-27-2016 07:30 AM
Hi,
We are replacing our RSA token based VPN with certificate based VPN authetication by using Windows 2012 as certificate server (internal) and ASa 5510 as shown in attached diagram.
Does anyone has this setup and example configuration .
04-28-2016 08:38 AM
Hi Mohammed,
Please have a look at the below link:
https://supportforums.cisco.com/blog/152941/anyconnect-certificate-based-authentication
The versions are different but should give you a good idea about the configuration steps.
Let us know if you have any further questions.
Regards,
Kanwal
Note: Please mark answers if they are helpful.
04-29-2016 03:30 AM
Thanks Kanwal,
How different will be with Windows 2016 server compare to 2003 server ? Do we need root CA server or only one is enough?
Regards,
04-29-2016 05:13 AM
Hi Mohammed,
I am not sure how the interface would differ across codes but you definitely would need a CA which should provide you root cert, intermediate and identity certificate.
Regards,
Kanwal
Note: Please mark answers if they are helpful.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide