You are here
SEC0213 - ISE 2.0 Internal CA SCEP with AnyConnect VPN (Part 2)
Difficulty Level:
Lab Document:
<Please login to see the content>
Category:
Security
The video shows you how to configure Cisco ISE 2.0 internal CA as a SCEP server for AnyConnect VPN client to obtain a certificate. We will go through basic configuration of ASA AnyConnect VPN to enable SCEP proxy. A test certificate request will be performed over VPN. Afterwards, we will configure the ASA to perform client certificate validity check using OCSP.
Part 2 of this video covers certificate authentication testing and OCSP configuration
Topic:
- ASA SCEP Proxy
- ASA AnyConnect VPN
- AnyConnect Client Profile
- Authorization Policy
- Certificate Revocation Check
- Online Certificate Status Protocol (OCSP)
About Author
Metha Chiewanichakorn, CCIE#23585 (Ent. Infra, Sec, SP), is a Cisco networking enthusiast with years of experience in the industry. He is currently working as a consulting engineer for a Cisco partner. As a founder of and an instructor at labminutes.com, Metha enjoys learning and challenges himself with new technologies.