cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
461
Views
0
Helpful
1
Replies
Highlighted
Beginner

Force client cert only for anyconnect and not for ssl-clientless?

I need to configure different authentication for anyconnect clients and clients logging in using the ssl portal in the browser.

I want both AAA and certificate for anyconnect but i want ONLY aaa for the ssl portal (clientless)

I tried using two tunnel groups with different authentication settings but i need the same alias available for both clientless and anyconnect and when i tried that it said i cant have two with the same alias.

Everyone's tags (4)
1 REPLY 1
Highlighted
Beginner

Force client cert only for anyconnect and not for ssl-clientless

Did you ever get an answer to this question?

It seems you should be able to set up a two different client profiles.  Under Authentication, ssl-client would would specify "Both" and the sslclientless would specify AAA.  You would likely have to duplicate much of the other work but the requirement would be satisfied.