Our Meraki firewall runs MX 16.9 beta version. We have configured Anyconnect as our client VPN. We want to enable certificate authentication on Anyconnect and want to use machine-based certificates. I created an enterprise CA and deployed machine-based (computer) certificates to test machines. I exported the certificate and uploaded it under Certificate Authentication but it is still unable to authenticate when trying to connect to the VPN on test machines. I have also updated the profile by checking Certificate Store Override and configuring key usage and extended key usage in certificate matching. Has anyone tried configuring certificate authentication for Anyconnect? If so, how did you make it work? Please advise, Meraki Support was not able to provide much information.
... View more
