Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
849
Views
0
Helpful
3
Replies

AnyConnect, iPhones & a Microsoft Certificate Authority

rob.clarke
Level 1
Level 1

‎02-04-2015 07:00 AM - edited ‎02-21-2020 08:03 PM

Hi All,

 

So I have setup my Cisco ASAs with AnyConnect using our Microsoft CA to sign requests from client machines.  My next task is to get iPhones to submit requests for the CA to sign and use with the iPhone AnyConnect app.  How an earth is this done?  I can't seem to find any documentation on this on the internet.  I can find plenty on AnyConnect and certificates and plenty on using a Microsoft CA but none on getting iPhone certificate requests signed by the CA.  I don not want certificates with exported keys as this is too great a security risk.  I want each device to have a certificate signed by the CA.  Surely this is possible?

Labels:
0 Helpful
3 Replies 3

rob.clarke
Level 1
Level 1

‎04-09-2015 02:34 AM

Anyone?!

0 Helpful

davinder2010
Level 1
Level 1
In response to rob.clarke

‎10-15-2018 12:00 PM

Hi, was this solved. Its 2018 and I'm getting the same problem with asav 9.6 anyconnect v4.5

0 Helpful

stsargen
Cisco Employee
Cisco Employee
In response to davinder2010

‎10-15-2018 12:23 PM

You should be able to use SCEP Proxy enrollment to a Microsoft CA server.  This will provision client certificates to the endpoint device.  If you are using the Local CA option on your ASA you could be hitting CSCvk26887.

0 Helpful
Customers Also Viewed These Support Documents