Solved: anyconnect ssl vpn using digital certificates

mulhollandm · ‎08-21-2013

folks

i have an asa 5540 (8.4) being used to terminate ssl vpn connections

the appliance is used as a local ca and issues certificates to remote users and these are then used as part of the authentication process

i now have a requirement to replace the self signed certificate and to purchase a third party certificate, i.e. verisign etc

can anyone point me to a good implementation guide for this

can i still use the asa to generate certificates for clients to use as part of the authentication process

thanks to anyone taking the time to reply or two read this

greatly appreciated

Marcin Latosiewicz · ‎08-22-2013

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00808b3cff.shtml

is the guide to install 3rd party cert.

The local CA process is independent from certificate user to authenticate ASA, in fact if you look at the certs gives to users they are provided by ASA's CA, and not signed by cert used for authentication.

Take care not to remove too many RSA keys ;-)

View solution in original post

Marcin Latosiewicz · ‎08-22-2013

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00808b3cff.shtml

is the guide to install 3rd party cert.

The local CA process is independent from certificate user to authenticate ASA, in fact if you look at the certs gives to users they are provided by ASA's CA, and not signed by cert used for authentication.

Take care not to remove too many RSA keys ;-)

mulhollandm · ‎09-10-2013

marcin

many thanks for your help

greatly appreciated