Hello RJI,

thanks for your suck a quick reply.

yes, I am talking about remote access vpn.

That means I only need to setup backup server Host address(OUTSIDE_2 IP) in the attached image?

i already purchased ssl certificate for vpn2.mysite.com and installed on OUTSIDE_2 interface.

I don't need to configure any other thing? like group policy and 2nd anyconnect client profile?

Thanks

Ankit

Hi,

You only need 1 AnyConnect profile, define the primary and backup server as per this screenshot

Get your certificate re-issued and include both FQDNs included in the SAN field, therefore you won't get any certificate errors.

HTH

Hello,

that means i don't need second certificate. 

I can add both FQDNs in SAN field and vpn works for both domains?

Thanks

Ankit

Hello,

Sorry for asking so many questions but I am kind of new in this ASA field.

In short, 

re-issue cert with both fqdn, assign to both interface outside_1 and outside_2, configure backup server will solve my issue.

Right?

Thanks

Ankit 

Hello RJI,

the problem is we are using quick ssl premium certificate and it's not possible to add multiple domains or sub domains under this certificate that's why we are using two different certificates for two vpns.

Thanks

Ankit

Hello there,

As per your suggestion, I add backup server vpn2.abc.com and it worked if i enter fqdn on cisco anyconnect client.

If i tried with the display name it says Contacting " whataver display name is", it took few seconds and then try to contacting backup server after that but the problem is " conenction is not secure" error show up. 

as I said vpn.abc.com is setup on OUTSIDE_1(primary internet) interface with ssl cert and

vpn2.abc.com is setup on OUTSITE_2 (secondary internet) interface.

Even if I connect through fqdn I can not access couple things through backup vpn for Example simple help and company app.

Thanks