Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
769
Views
0
Helpful
6
Replies

Cisco ASA remote access VPN with Certs

networker99
Level 1
Level 1

‎01-18-2012 08:39 AM - edited ‎02-21-2020 05:49 PM

Hi,

Is there a way I can configure a remote access VPN on a Cisco 5505 using digital certs instead of pre-shared key.  I dont want to use a 3rd party CA, can the ASA perform this role? with a self signed cert?

Thanks

Labels:
0 Helpful
6 Replies 6

networker99
Level 1
Level 1
In response to andrew.prince

‎01-18-2012 08:49 AM

Both RA RSA examples involve using a MS CA?

0 Helpful

andrew.prince
Level 10
Level 10
In response to networker99

‎01-18-2012 08:53 AM

Yes - and they are examples to give you an idea on which direction you need to go in.  And I am pretty sure someone has either done or close to what you want to do - use your favorite search engine and have a look?!

0 Helpful

networker99
Level 1
Level 1
In response to andrew.prince

‎01-18-2012 08:55 AM

I have read those articles and no they dont help, hence specifying using the ASA.  and yes I am looking for the answer on an SE

0 Helpful

andrew.prince
Level 10
Level 10
In response to networker99

‎01-18-2012 09:00 AM

So you looked at all the config examples??

So you want to use VPN with Digital Certs - but with a self signed cert on the ASA....

1) How to on digital certs

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080930f21.shtml

So you just ignore the bit about the MS CA

2) How to on createing the self signed cert of the ASA

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00808efbd2.shtml

So you ignore everything about the AnyConnect config

Fo the client certs - you are on your own there!!!

0 Helpful

rizwanr74
Level 7
Level 7

‎01-18-2012 09:01 AM

Here is a link, below from Cisco, will help you with the config and it is a quite a mouthful.

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080930f21.shtml

Thanks

Rizwan Rafeek

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents