Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2759
Views
5
Helpful
2
Replies

Anyconnect + iOS + Certificate

Patrick Tran
Level 1
Level 1

‎02-22-2011 04:34 AM - edited ‎02-21-2020 05:11 PM

Hello,

I'm trying to set up a VPN connection on iPhone 4 using Anyconnect Secure Mobility Client 2.4.4

ASA version: 8.4

ASDM version: 6.4

If I configure VPN connection with login/password, it works!

If I configure VPN connection with certificate, i got the error "This connection requires a client certificate, but no matching certificate is configured. Please modify the connection, choose a valid certificate, and try again."

About the certificate I use:

- Certificate has Key Usage "EmailProtect  1.3.6.1.5.5.7.3.4" (according to Cisco Guide http://www.cisco.com/en/US/docs/security/vpn_client/anyconnect/anyconnect30/administration/guide/ac03vpn.html#wp1060146 )

- If I use this certificate on Anyconnect for Windows, it works

- I imported the certificate with IPCU (iPhone Configuration Utility)

Does anybody have an idea?

Thanks a lot,

Best regards,

Patrick

Labels:
0 Helpful
2 Replies 2

Patrick Tran
Level 1
Level 1

‎02-22-2011 06:20 AM

I solves this problem...


Extended Key Usage accepted by Anyconnect for Windows are different with Anyconnect for iPhone.

On iPhone, I have to use a certificate with Extended Key Usage:

id-kp-clientAuth             1.3.6.1.5.5.7.3.2

Hope that helps next users

Patrick

Aaron Harrison
VIP Alumni
VIP Alumni
In response to Patrick Tran

‎12-20-2012 04:46 AM

That does help :-)

Thanks

Aaron Please remember to rate helpful posts to identify useful responses, and mark 'Answered' if appropriate!
0 Helpful
Customers Also Viewed These Support Documents