01-21-2019 08:42 AM
I need to enforce the certificate used by my VPN client. Is it possible without suppressing the certificates present in the Windows personal and machine stores?
Solved! Go to Solution.
01-21-2019 08:47 AM
01-23-2019 03:34 AM
Hi,
No, there is only the user or machine certificate stores, you cannot further segregate.
If you wanted something unique for AnyConnect you could create a unique certificate template e.g "VPNTemplate" on the CA, distribute the certificates to AnyConnect users. Within AnyConnect (using the profile editor) you could match on a specific value only within that template.
HTH
01-21-2019 08:47 AM
01-23-2019 01:04 AM
Thanks, can I use a custom store to have a neat certificates segregation, possibly integrated into anyconnect?
01-23-2019 03:34 AM
Hi,
No, there is only the user or machine certificate stores, you cannot further segregate.
If you wanted something unique for AnyConnect you could create a unique certificate template e.g "VPNTemplate" on the CA, distribute the certificates to AnyConnect users. Within AnyConnect (using the profile editor) you could match on a specific value only within that template.
HTH
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: