10-09-2017 04:42 AM - edited 03-12-2019 04:36 AM
Hi All,
One of my client need following VPN solution. Please help me is this possible with Cisco VPN or not.
Solution must provide a software which shall be installed at remote User PC/Laptop/Mobile/Tablet etc. This software will make a unique hardware ID of that system. This hardware ID shall be authenticated at Central Software VPN Concentrator before allowing system on the network. User having valid username and password must only be allowed to enter in the network from authorized system. User must not be able to enter in the network from unauthorized system. Each user must be bind with hardware of the remote user PC/Laptop/Mobile Tablet.
Regards,
Uzair Hussain
10-09-2017 05:58 AM
Hello,
This can be easily accomplished with Cisco ISE solucion integrated to ASA. ASA alone I dont believe it will be possible.
Then you can use ISE NAC Agent on the remote devices.
10-09-2017 09:30 AM
You could enroll all devices with a certificate and then do a double authentication with certificate and domain-credentials. The ASA with AnyConnect can handle that. The mentioned ISE-solution would give additional security-measure for Windows and macOs based systems, but is not available for mobiles and non-windows-tablets.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide