Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
156
Views
0
Helpful
0
Replies

Replace certificate with VPN

Da ICS16
Level 1
Level 1

‎01-21-2025 07:00 PM - last edited on ‎01-27-2025 02:54 AM by Community Manager

Dear Cisco Community,

We use ISE version 3.x both using LAN dot1x and VPN tunnel. ISE integration with AD for Authentication.

When user connect to VPN ( Cisco Secure Client ). It required to check AD user credential, PC certificate and OTP. It also check the Posture and policy we defined.

Is there another alternative solution to replace certificate with VPN? No require check certificate when user connect VPN.

If yes, how can we configure? Is it good practice or not? how about ISE security level?

If cannot do it, do we have the way to simplify from ISE admin / end users not challenge with certificate too much? 

Thanks for update and supporting.

 

 

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents