Cisco Cisco ASA 5545-X Adaptive Security Appliance 기술 매뉴얼

Contributed by Atri Basu, Cisco TAC Engineer.
Sep 09, 2014

Introduction
Prerequisites
     Requirements
     Components Used
Background Information
Configure
     Enroll the ASA
     Configure a Tunnel for Enrollment Use
     Configure a Tunnel for User Certificate Authentication
Renew the User Certificate
Verify
Related Information

This document describes the use of Legacy Simple Certificate Enrollment Protocol (SCEP) on the Cisco
Adaptive Security Appliance (ASA).

Caution: As of Cisco AnyConnect Release 3.0, this method should not be used. It was previously necessary
because mobile devices did not have the 3.x client, but both Android and iPhones now have support for SCEP
proxy, which should be used instead. Only in cases where it is not supported because of the ASA should you
configure Legacy SCEP. However, even in these cases, an ASA upgrade is the recommended option.

Cisco recommends that you have knowledge of Legacy SCEP.

This document is not restricted to specific software and hardware versions.

The information in this document was created from the devices in a specific lab environment. All of the
devices used in this document started with a cleared (default) configuration. If your network is live, make sure
that you understand the potential impact of any command.