02-24-2015 09:24 AM - edited 02-21-2020 08:06 PM
Hi mates, I have a client that is in the need to implement a certificate x509 for computers authentication that are over vpn using anyconnect. the question is how create that certificate. if is on Windows side or in the ASA side? and how?.
Server is a Windows 2012 clients are xp, w7 and Windows 8.1
Regards,
02-26-2015 08:01 PM
Hi,
You will need to request a CA certificate from your organisations CA server http://CA-IP-Address/certsrv (assuming your Windows 2012 server is your CA). Once you have this certificate, you install this onto your ASA.
Next, you will need to request a user certificate from the same CA and install on the client device.
Obviously, you will also need to configure Anyconnect for certificate authentication :)
02-27-2015 06:21 AM
Thanks...... and last question the certi an oscp?
02-27-2015 06:13 PM
This should help with OCSP:
http://www.cisco.com/c/en/us/support/docs/security/adaptive-security-appliance-asa-software/116720-config-asa-ocsp-00.html
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide