Cisco ASA 5515 Anyconnect VPN Certificate

Rafael Hengky · ‎12-14-2015

Hi,

We have just set up Anyconnect VPN on ASA 5515 and all working out well. But there's still one thing that needs to be done which is certificate issue. Because when user opened the VPN webpage there's a certificate error message. We already tried to install certificate that we bought from GeoTrust but on the web page it's still showing that it's using a self-signed certificate.

Kindly guide me through this.

Thanks.

Karsten Iwen · ‎12-14-2015

After installing the certificate in the ASA, it needs to be assigned to the interface. That can be done in ASDM under Configuration -> Device Management -> Advanced -> SSL Settings.

Rafael Hengky · ‎12-14-2015

Thanks for your reply Karsten but we already do that. Other thoughts maybe?

Karsten Iwen · ‎12-14-2015

Either you assigned the wrong certificate to the right interface or the right cert to the wrong interface ... Please double-check that.

Rafael Hengky · ‎12-15-2015

I actually assign the certificate to all interfaces (frustratingly). How do I validate the certificate?

Rafael Hengky · ‎12-27-2015

Solved with this article.

https://supportforums.cisco.com/discussion/12722681/cisco-asa-getting-temp-cert-device-selects-trust-point-asa-self-signed-client