Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1276
Views
0
Helpful
3
Replies

Windows server 2012 and cisco anyconnect x509 certificate.

ignbeltr1
Level 1
Level 1

‎02-24-2015 09:24 AM - edited ‎02-21-2020 08:06 PM

Hi mates, I have a client that is in the need to implement a certificate x509 for computers authentication that are over vpn using anyconnect. the question is how create that certificate. if is on Windows side or in the ASA side? and how?.

Server is a Windows 2012 clients are xp, w7 and Windows 8.1

 

Regards,

Labels:
0 Helpful
3 Replies 3

petenixon
Level 3
Level 3

‎02-26-2015 08:01 PM

Hi,

You will need to request a CA certificate from your organisations CA server http://CA-IP-Address/certsrv (assuming your Windows 2012 server is your CA). Once you have this certificate, you install this onto your ASA. 

Next, you will need to request a user certificate from the same CA and install on the client device.

Obviously, you will also need to configure Anyconnect for certificate authentication :)

0 Helpful

ignbeltr1
Level 1
Level 1
In response to petenixon

‎02-27-2015 06:21 AM

Thanks...... and last question the certi an oscp?

0 Helpful

petenixon
Level 3
Level 3
In response to ignbeltr1

‎02-27-2015 06:13 PM

This should help with OCSP:

http://www.cisco.com/c/en/us/support/docs/security/adaptive-security-appliance-asa-software/116720-config-asa-ocsp-00.html

0 Helpful
Customers Also Viewed These Support Documents