Re: AnyConnect - Untrusted Server Cert warning

CyberSecLead · ‎10-09-2019

Dear Members,

My scenario as follows.

++ I am trying to establish Anyconnect VPN for Domain joined computers and Workgroup computers (Non-Domain) via DAP.

++ We have certs installed on Domain PC's and it doesn't ask for Security Warning when trying to connect and its normal.

++ However, i do receive the "Security Warning: Untrusted Server Certificate" pop-up for Workgroup PC's and my question is, I need to ensure that it doesn't prompt with "Connect Anyway" option if there is no certificate installed. I need to enforce mandatory that none of the users without the cert should not be allowed to connect VPN. (Note: I have given the option for the users to install the cert manually on their non-domain pcs).

Awaiting advise from the experts.

Regards.

Marius Gunnerud · ‎10-09-2019

As far as i know this setting is user controllable, and can not be removed. You can however set the default to be enabled but if the user knows what he/she is doing then they can change the setting.

The xml file that contains the setting is found here: %USERPROFILE%\AppData\Local\Cisco\Cisco AnyConnect Secure Mobility Client

--
Please remember to select a correct answer and rate helpful posts

AnyConnect - Untrusted Server Cert warning

Jabber 14 getting invalid and expired cert warning CUPS 12.5

ISE - O que precisamos saber sobre DNS Server

Configure AnyConnect to Access Server over IPSec Tunnel.

AnyConnect接続履歴の削除方法

PROBLEM WITH LOCAL HTTP SERVER