09-23-2019 01:09 PM
HI,
After users connect for the first time using IP, I assume their profile is downloaded and the box on Anyconnect where you input the IP of the ASA is changed to the FQDN. This name will not resolve because it is not in any DNS except for my local.
Is there a way to remove the FQDN and just have the ASA's IP automatically inserted instead of the user replacing the FQDN with it IP every time?
09-23-2019 01:37 PM
09-24-2019 05:24 AM
You can use the AnyConnect profile editor to update the profile as @Rob Ingram suggested.
However if the certificate on the ASA references the FQDN and does not have the IP address as a Subject Alternative Name (SAN) then users will always get a certificate warning when connecting.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide