Cisco Cisco ASA 5585-X Adaptive Security Appliance 기술 매뉴얼

Contributed by Michal Garcarz, Eugene Korneychuk, and Wojciech
Cecot, Cisco TAC Engineers.
Jul 17, 2015

Introduction
Prerequisites
     Requirements
     Components Used
Background Information
     AnyConnect Secure Mobility Client Considerations
Configure
     Network Diagram
     Certificates
     ISE
        Step 1. Add the ASA to the network devices on the ISE.
        Step 2. Create a username in the local store.
     ASA
     Windows 7
        Step 1. Install the CA certificate.
        Step 2. Configure the VPN connection.
Verify
     Windows Client
     Logs
     Debugs on the ASA
     Packet Level
Troubleshoot
Related Information

This document provides a configuration example for a Cisco Adaptive Security Appliance (ASA) Version
9.3.2 and later that allows remote VPN access to use Internet Key Exchange Protocol (IKEv2) with standard
Extensible Authentication Protocol (EAP) authentication. This allows a native Microsoft Windows 7 client
(and any other standard−based IKEv2) to connect to the ASA with IKEv2 and EAP authentication.

Cisco recommends that you have knowledge of these topics:

Basic VPN and IKEv2 knowledge

• 

Basic Authentication, Authorization, and Accounting (AAA) and RADIUS knowledge

• 

Experience with ASA VPN configuration

•