Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
10374
Views
0
Helpful
8
Replies

iPad AnyConnect Mobile licensing question

Go to solution
edwardre1
Level 1
Level 1

‎09-14-2011 09:46 PM - edited ‎02-21-2020 05:35 PM

Hello,

I am setting up an ASA5505 to allow a VPN with certificate from AnyConnect Secure Mobility Client (iPad)

However I get a "No License" message back from the ASA, on the iPad - Anyconnect.

I remember reading the ASA5505 came with two licenses. Or am I wrong?

thank you for your help

Edward

1 person had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jennifer Halim
Cisco Employee
Cisco Employee
In response to edwardre1

‎09-14-2011 10:19 PM

No, the AnyConnect mobile license only enable the ASA to accept SSL connection from mobile client.

If you would like to use certificate as the authentication, then you would need to purchase the certificate from a CA. OR, you can configure the ASA as the CA server and it can generate certificate for the client.

Alternatively, if you don't require certificate as the authentication, then CA certificate is not required at all.

View solution in original post

0 Helpful
8 Replies 8

Go to solution
Jennifer Halim
Cisco Employee
Cisco Employee

‎09-14-2011 09:53 PM

When connecting from iPad or any mobile devices, you would also need to have the AnyConnect Mobile license enabled.

The default 2 licenses allow connection from laptops only.

0 Helpful

Go to solution
edwardre1
Level 1
Level 1
In response to Jennifer Halim

‎09-14-2011 09:55 PM

thanks for this.

what is the quickest way for me to purchase a licenses for the iPad Anyconnect Mobility?

0 Helpful

Go to solution
Jennifer Halim
Cisco Employee
Cisco Employee
In response to edwardre1

‎09-14-2011 09:58 PM

The only way would be to purchase it via Cisco Reseller/Partner.. you'll receive a PAK file that you can register online and generate the activation key that can be enabled on the ASA firewall.

0 Helpful

Go to solution
edwardre1
Level 1
Level 1
In response to Jennifer Halim

‎09-14-2011 10:10 PM

ok I will find a partner here in Melbourne Australia to purchase the license.

Does this license represent the certificat used in the AnyConnect profile? or do I also have to purchase the certificate from a CA to be able to use certificates?

sorry about asking so many questions!

thank you

0 Helpful

Go to solution
Jennifer Halim
Cisco Employee
Cisco Employee
In response to edwardre1

‎09-14-2011 10:19 PM

No, the AnyConnect mobile license only enable the ASA to accept SSL connection from mobile client.

If you would like to use certificate as the authentication, then you would need to purchase the certificate from a CA. OR, you can configure the ASA as the CA server and it can generate certificate for the client.

Alternatively, if you don't require certificate as the authentication, then CA certificate is not required at all.

0 Helpful

Go to solution
edwardre1
Level 1
Level 1
In response to Jennifer Halim

‎09-14-2011 10:40 PM

when you say that "..OR, you can configure the ASA as the CA server and it can generate certificate for the client."

would you be so kind to point me to an up to date configuration example for my ASA5505 - 8.2 (1)?

thank you again

0 Helpful

Go to solution
Jennifer Halim
Cisco Employee
Cisco Employee
In response to edwardre1

‎09-14-2011 10:47 PM

Here is the configuration guide for ASA to be configured as CA server:

http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/cert_cfg.html#wp1085722

Hope that helps.

0 Helpful

Go to solution
edwardre1
Level 1
Level 1
In response to Jennifer Halim

‎09-14-2011 11:50 PM

excellent support!

thank you Jennifer :-)

0 Helpful
Customers Also Viewed These Support Documents