cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1236
Views
0
Helpful
1
Replies

ASA IKEv2 RAS VPN with Windows 10 client based on certificates and EAP user authorization

PDVfriedrich
Level 1
Level 1

Hello all

I' am trying to get IKEv2 VPN from Windows 10 client to ASA 5508 (latest recommended version) with certificate based local and peer authentication and with additional  EAP user authorization working.

But with local and peer authentication with certificates  there will be no additional EAP request  and the connection is established and working without that.

With IKE peer authentication using EAP, the Windows 10 clients sends not the right EAP response and the ASA logs "EAP NULL response from client"  and drop s the connection.

Any help is appreciated

Thanks Gregor

1 Reply 1

Rahul Govindan
VIP Alumni
VIP Alumni

Are you trying to do Anyconnect ikev2 user and cert authentication similar to this example:

http://www.cisco.com/c/en/us/support/docs/security/anyconnect-secure-mobility-client/113692-technote-anyconnect-00.html

If so, are you not receiving the username/password prompt after certificate auth is done? Any logs/debugs that you can paste here?