Re: ASA Anyconnect VPN using Certificate

chadi_chahine · ‎10-31-2009

I want to configure an Anyconnect vpn using digital certificate on a ASA.

I'm able to access the network when using a local database but when I use digital certificate I got certification error without prompting to enter the pin code.

I have already configured my ASA with VPN client using digital certificate as authentication.

What can I do to configure SSL VPN over the same digital certificate?

wong34539 · ‎11-05-2009

I think it is possible to use same digital certificate. You can specify whether you want users to authenticate using AAA with a username and password or using a digital certificate (or both). When you configure certificate-only authentication, users can connect with digital certificate and are not required to provide a user ID and password.

chadi_chahine · ‎11-06-2009

I have resolved the problem,

thank you

tgrundbacher · ‎10-20-2011

Hi chadi

What was the resolution for the problem? I'm having the same error message.

Thanks

Toni

tgrundbacher · ‎12-15-2011

I've also resolved my problem in the meantime. It's important to know that the certificate must be a user-type cert and not a machine cert. I initially wanted to authenticate the machine instead of the user, yet this is not possible, which has been confirmed by TAC later on.

clin · ‎10-14-2011

hi chadi

can you give me a guide how to configure " VPN client using digital certificate as authentication." ?

i got error message ""certificate validation failure"" when authenticate against certificate , can you advise ?