Chapter 9. Advanced Authentication and Authorization of AnyConnect VPNs
This chapter covers the following subjects:
• Authentication Options and Strategies: This section discusses the available options when choosing an advanced authentication scheme and cover certificate-mapping and certificate-validation procedures. We also review the deployment of an internal and external PKI scheme.
• Provisioning Certificates as a Local CA: This section discusses the steps required to enable the ASA’s local CA server and the provisioning of digital certificates to our users.
• Configuring Certificate Mappings: This section takes a closer look at certificate mappings and discusses the various options available for their use.