ASA 8.0.x and VPN Concentrator RSA-SIG :)

Folks,

The same configuration not working in ASA 7.x.x and 8.0.x
after a spending a few days digging on it what i found.

MS not providing enanched key usage parameter


            id-kp-clientAuth             1.3.6.1.5.5.7.3.2
id-kp-ipsecEndSystem 1.3.6.1.5.5.7.3.5
id-kp-ipsecTunnel 1.3.6.1.5.5.7.3.6
id-kp-ipsecUser 1.3.6.1.5.5.7.3.7

 

and only way how to fix it what i found is to disable keyusage checking
ignore-ipsec-keyusage

 

Sign In or Register to comment.