Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
11130
Views
5
Helpful
3
Replies

Anyconnect automatic certificate selection

paholland
Level 1
Level 1

ā€Ž02-22-2013 09:00 AM - edited ā€Ž02-21-2020 06:43 PM

                   If a client device running windows 7 has 1 machine certificate and multiple user certificates, with the xml profile certificate store set to "All" and auto certitifcate selection is enabled, which certificate will anyconnect present first for certificate to anyconnect profile mapping rules.  If it is OS dependant is there a way to change the default order

3 people had this problem
Labels:
0 Helpful
3 Replies 3

Herbert Baerten
Cisco Employee
Cisco Employee

ā€Ž02-25-2013 01:45 PM

hi paholland

The order is OS dependant, and AFAIK there is no way to influence the order.

However, you can limit which certificates are used by implementing certificate match criteria in the profile:

http://www.cisco.com/en/US/docs/security/vpn_client/anyconnect/anyconnect25/administration/guide/ac03features.html#wp1216866

hth

Herbert

jsteffensen
Level 1
Level 1
In response to Herbert Baerten

ā€Ž05-25-2021 05:08 AM

Do you have some more info about the syntax for "Custom extended Match" Syntax?

I cant find any information about this online.

Regards

Jarle

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to jsteffensen

ā€Ž05-25-2021 07:34 AM

@jsteffensen This is a very old thread but you can find the "Custom Extended Match" information you are asking about in the current AnyConnect Admin Guide:

https://www.cisco.com/c/en/us/td/docs/security/vpn_client/anyconnect/anyconnect410/administration/guide/b-anyconnect-admin-guide-4-10/configure_vpn.html#ID-1428-00000652

 

0 Helpful
Customers Also Viewed These Support Documents