Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
563
Views
10
Helpful
2
Replies

Firepower VPN and certificate

Jojje
Level 1
Level 1

‎03-17-2022 05:14 AM - edited ‎03-17-2022 05:18 AM

Hi,

Im trying to obtain a certificate to be used for remote access VPN (Anyconnect).
As I have users using both DNS-name and IP-address, I wanted to include the IP-address in the certificate.

No problem there, however the provider want us to validate that the IP is ours and they want to do that using HTTP Practical demostration.
How this is done is that we should load a file into the webserver on the firepower-device with a token in a file called auth.txt in a folder (.well-known/pki-validation/) so it can be accessed via http://<my firewall>/.well-known/pki-validation/auth.txt

 

My question is how do I upload this file to the firepower-device?

 

Thanks in advance.

Labels:
2 Replies 2

Karsten Iwen
VIP
VIP

‎03-17-2022 05:23 AM

I have no answer to this question. But I would certainly move all users to use the FQDN and just skip the inclusion of the IP.

Milos_Jovanovic
VIP Alumni
VIP Alumni

‎03-18-2022 12:01 AM

Hi @Jojje,

You will not be able to do that, as ASA/FTD  is not a standard Web server, so you can't simply upload files there and create folder structure for it. As @Karsten Iwen said, migrate all of you users to FQDN instead, as this is the right way forward.

BR,

Milos

0 Helpful
Customers Also Viewed These Support Documents