11-25-2015 09:22 AM - edited 02-21-2020 08:34 PM
Hi All,
I would like to know if the below is possible:
If we’re able to use a combination of certificate and user authentication, but only use the certificates for certain profiles. So for example, the TEST_A profile would be username/password only, but the TEST_CORP profile would need username/password and also a valid certificate on the client.
Can this requirement be fulfilled on the Cisco ASA or does this need tweaking on the ACS server?
Really appreciate all assistance or guidance given.
Thanks in Advance.
Regards,
Kanes.R
Solved! Go to Solution.
11-26-2015 01:44 PM
You can do that on the ASA. Create two connection profiles - one with secondary authentication and the other without.
11-26-2015 01:44 PM
You can do that on the ASA. Create two connection profiles - one with secondary authentication and the other without.
11-29-2015 05:09 PM
Hi Marvin,
Thanks found that on the profiles authentication tabs.
Not sure how i missed it the other day. Really appreciate your assistance.
Thanks and Regards,
Kanes.R
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide