Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3612
Views
13
Helpful
15
Replies

Certificate based authentication and revoking access

MikeM-2468
Level 1
Level 1

‎04-04-2011 10:11 AM

I'm testing certificate based VPN authentication with the ASA and AnyConnect.  Things work as I expect for the most part.  One question concerns revocation of the certificates.  What's the best practice for deploying this type of setup and making sure that if the situation changes that users can't get in via their certificate if I don't want them to?  Revoking the cert at the CA doesn't do anything.

Labels:
0 Helpful
15 Replies 15

Marcin Latosiewicz
Cisco Employee
Cisco Employee
In response to MikeM-2468

‎04-12-2011 08:57 AM

Mike,

Sniffer trace on ASA (both for IP address of CDP + DNS) should say a bit more ;-)

Marcin

0 Helpful
Customers Also Viewed These Support Documents