<div>
Are you authenticating based on SSL, or do you simply have a publicly signed cert on the ASA?<br />
<br />
If its the former I wrote this a while ago;<br />
<a href="https://www.petenetlive.com/KB/Article/0001055" rel="ugc">Why Securing Your VPN Solution With Computer Certificates ‘Only’ Is A BAD Idea</a>
</div>


Are you authenticating based on SSL, or do you simply have a publicly signed cert on the ASA?

If its the former I wrote this a while ago;
Why Securing Your VPN Solution With Computer Certificates ‘Only’ Is A BAD Idea [https://www.petenetlive.com/KB/Article/0001055]

<div>
Your blog validates the concern. &nbsp;So whats the next step to bringing this to a secure offering?
</div>


Your blog validates the concern.  So whats the next step to bringing this to a secure offering?

<div>
&gt;&gt; So whats the next step to bringing this to a secure offering?<br />
<br />
Use 2 Factor Authentication ?<br />
<br />
Using certs (something you have) <b>and</b> a password (something you know)<br />
<br />
&lt;/p&gt;
</div>


>> So whats the next step to bringing this to a secure offering?

Use 2 Factor Authentication ?

Using certs (something you have) and a password (something you know)

</p>

<div>
<div class="content wysiwyg-content">
Is there a way to lock down the certificate issued from the ASA to a specific host? &nbsp; I love the ease of a VPN client, but an worried that the certificate can be copied and put on other systems.<br />
<br />
<br />
Fox
</div>
</div>


Is there a way to lock down the certificate issued from the ASA to a specific host?   I love the ease of a VPN client, but an worried that the certificate can be copied and put on other systems.


Fox

Cisco ASA SSL VPN security

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).

Cisco

A virtual private network (VPN) is a network that uses a public telecommunication infrastructure, such as the Internet, to provide remote offices or travelling users access to a central organizational network securely. VPNs encapsulate data transfers using secure cryptographic methods and other security mechanisms to ensure that only authorized users can access the network and that the data cannot be intercepted.

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.