Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
631
Views
0
Helpful
1
Replies

Force client cert only for anyconnect and not for ssl-clientless?

jonas.falck
Level 1
Level 1

‎02-05-2013 11:59 PM - edited ‎02-21-2020 06:41 PM

I need to configure different authentication for anyconnect clients and clients logging in using the ssl portal in the browser.

I want both AAA and certificate for anyconnect but i want ONLY aaa for the ssl portal (clientless)

I tried using two tunnel groups with different authentication settings but i need the same alias available for both clientless and anyconnect and when i tried that it said i cant have two with the same alias.

Labels:
0 Helpful
1 Reply 1

mbradleybaker
Level 1
Level 1

‎05-10-2013 09:36 PM

Did you ever get an answer to this question?

It seems you should be able to set up a two different client profiles.  Under Authentication, ssl-client would would specify "Both" and the sslclientless would specify AAA.  You would likely have to duplicate much of the other work but the requirement would be satisfied.

0 Helpful
Customers Also Viewed These Support Documents