Solved: Thanks for the info Marvin

chamika_sooriyabandara1 · ‎07-16-2017

Hi All,

Does anyone know that TLS 1.2 support on ASA 5512 IOS 9.2.4? Users are connected via Anyconncet 3.1.

Release notes doesn't mention anything about TLS features?

Thank you in-advance.

Regards,

Chamika

Marvin Rhoads · ‎07-16-2017

No.

AnyConnect 3.1 does not offer support for TLS/DTLS, SRTP, and SSH Suite B.

Source: http://www.cisco.com/c/en/us/td/docs/security/vpn_client/anyconnect/anyconnect31/administration/guide/anyconnectadmin31/ac09localpolicy.html

Furthermore on Anyconnect 4.x,

AnyConnect TLS 1.2 requires a secure gateway that also supports TLS 1.2. This is available in release 9.3(2) of the ASA on 5500-X models.

Source: http://www.cisco.com/c/en/us/td/docs/security/vpn_client/anyconnect/anyconnect40/release/notes/b_Release_Notes_AnyConnect_4_0.html

Marvin Rhoads · ‎07-16-2017

No.

AnyConnect 3.1 does not offer support for TLS/DTLS, SRTP, and SSH Suite B.

Source: http://www.cisco.com/c/en/us/td/docs/security/vpn_client/anyconnect/anyconnect31/administration/guide/anyconnectadmin31/ac09localpolicy.html

Furthermore on Anyconnect 4.x,

AnyConnect TLS 1.2 requires a secure gateway that also supports TLS 1.2. This is available in release 9.3(2) of the ASA on 5500-X models.

Source: http://www.cisco.com/c/en/us/td/docs/security/vpn_client/anyconnect/anyconnect40/release/notes/b_Release_Notes_AnyConnect_4_0.html

chamika_sooriyabandara1 · ‎07-17-2017

Thanks for the info Marvin

Does TLS 1.2 support ASA 9.2.4?