cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1019
Views
0
Helpful
2
Replies

Does ASA Support Android Hybird RSA Authentication ?

carol1979
Level 1
Level 1

Dear all

Does ASA Support Android Hybird RSA Authentication  ?

I should be such as to set the ASA firewall, let him support Android VPN Hybrid mode under my settings

tunnel-group IPsec_Hybird_Tunnel general-attributes

default-group-policy Android_Hybird

authorization-required

tunnel-group Android_Hybird_Tunnel ipsec-attributes

ikev1 pre-shared-key **********

chain

ikev1 trust-point CA

ikev1 user-authentication hybrid

tunnel-group Android_Hybird_Tunnel ppp-attributes

authentication ms-chap-v2

-------------------------------------------------------------------------------------

crypto ikev1 policy 10

authentication rsa-sig

encryption aes-256

hash sha

group 2

lifetime 86400

--------------------------------------------------------------------------------------

when i debug find this message

%ASA-7-713906: IP = 1.1.1.1, All SA proposals found unacceptable

2 Replies 2

willmac29
Level 1
Level 1

I've managed to configure IPSEC hybrid(Mutual group Authentication) with the Cisco VPN client, which uses a pre-shared key and CA certificate as well as Xauth. When using "IPSec Hyrbid RSA" on an an Android device, my attempts to configure it on the ASA have failed.

Log message:

3Jul 25 201320:39:54713048



IP = 192.168.7.76, Error processing payload: Payload ID: 1


      

Or does it use either. I deleted the imported CA certificate in my Cisco VPN client and the Mutual group authentication still worked.