How to use Radius/Tacacs+ and Certificate based Authentication for AnyConnect VPN

First you have to add a valid Certificate to the ASA, then change following in the configuration.

tunnel-group SSLClientProfile general-attributes
authentication-server-group AAA-TACACS+
tunnel-group SSLClientProfile webvpn-attributes
authentication aaa certificate
Then you can connect to the asa only with username and a user certificate.

Flickr : , , , , ,

Leave a Reply