03-17-2022 05:14 AM - edited 03-17-2022 05:18 AM
Hi,
Im trying to obtain a certificate to be used for remote access VPN (Anyconnect).
As I have users using both DNS-name and IP-address, I wanted to include the IP-address in the certificate.
No problem there, however the provider want us to validate that the IP is ours and they want to do that using HTTP Practical demostration.
How this is done is that we should load a file into the webserver on the firepower-device with a token in a file called auth.txt in a folder (.well-known/pki-validation/) so it can be accessed via http://<my firewall>/.well-known/pki-validation/auth.txt
My question is how do I upload this file to the firepower-device?
Thanks in advance.
03-17-2022 05:23 AM
I have no answer to this question. But I would certainly move all users to use the FQDN and just skip the inclusion of the IP.
03-18-2022 12:01 AM
Hi @Jojje,
You will not be able to do that, as ASA/FTD is not a standard Web server, so you can't simply upload files there and create folder structure for it. As @Karsten Iwen said, migrate all of you users to FQDN instead, as this is the right way forward.
BR,
Milos
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide