The command to disable the authentication on the ASA for a specific trustpoint is “ no validation-usage” and it is applicable under the trustpoint. Are you aware about any command/way to disable the authentication on a specific trustpoint? As to VPN authentication, if you do not validate it against AD or MFA, it could pass… If the ASA/FTD trusts GoDaddy, then it will trust the cert presented and signed by GoDaddy. Here is the answer, which created another issue/question: Would this mean that any An圜onnect client that would present an identity certificate issued by GoDaddy would be able to pass the authentication on the firewall since the firewall trusts GoDaddy certs in this case? Say you have an ASA/FTD configured with An圜onnect certificate authentication and the trustpoint applied to the firewall for SSL services has a certificate issued by GoDaddy. Received a question from a Firepower/FTD student/reader:
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |