Hi, I'm trying to figure out a way to allow VPN access via. AnyConnect for staff with a mobile phone so that they can use an app while in the field, but I'm stuck on the certificate process in DAP.
I would like to use DAP to validate that the phone (iPhone) has a certain certificate installed. (We don't want to use the certificate for authentication). I've imported a couple of certificates into the "user" certificate store in the iOS app, and set up the MCA in DAP, but when I debug the connection, I don't see DAP evaluating the certificate at all. I've tried setting up DAP for the issuing CA, the CN on the cert and the serial number on the cert, but none of them show up in the debug.
What am I missing? Are there any resources on setting up DAP for this sort of thing?
DAP record [ Company_VPN_iphone ]:
((EVAL(endpoint.os.version,"EQ","Apple Plugin","string"))) and ((EVAL(endpoint.cert.issuer.cn,"EQ","Company Corporate Issuing CA","string")) or (EVAL(endpoint.cert.subject.cn,"EQ","vpn.company.com","string")))
Hello All, i have two vm firepower as HA and they are working fine as HA the traffics going through fin but there is a red mark shows on the HA, can someone tell me what does that mean please? This only appears on the HA not in individual device...
This event had place on Thursday 23rd, January at 10hrs PDT
Omar Santos is an active member of the cyber security community, where he leads several industry-wide initiatives and standards bodies. H...
Securing What's Now and What's Next. With our annual global survey of 2,800 security leaders, we dove deep to compile key benchmark statistics. The 2020 CISO Benchmark Report provides valuable takeaways and data on the most pressing cybersecurity to...
I have 2 Firepower module (ASA 5525) with Malware and IPS licence. Recently i changed the Malware policy action set to "Block Malware" and "Reset Connection". How to log the event if my policy blocked any files? Please find the attached screen shot f...
Hi, We have ISE v2.4 installed in production for only 2 month now. we are integrating anyconnect for posturing on all end users machine. I want to get the report or statistics of all the machines on which anyconnect client is installed.