Deployment tasks for this scenario are as follows: Initially, Any Connect was an SSL-only VPN client.Starting with Version 3.0, Any Connect became a modular client with additional features (including IPsec IKEv2 VPN terminations on Cisco ASA), but it requires a minimum of ASA 8.4(1) and ASDM 6.4(1).What are colloquially known as SSL certificates should be referred to as X.509 certificates.The term SSL certificate became common due to the adoption of the X.509 (one of the ITU X.500 Directory standards) certificate format by Netscape when it designed the original versions of the SSL (Secure Socket Layer) protocol, eons ago, when the world was still young, dinosuars still roamed, and the Internet was a friendly place.
The client also authenticates the ASA with identity certificate-based authentication.
There are other methods of completing this task, but prefer this method, because you can build the whole AD FS 3.0 solution, test the complete solution and then cutover to it by updating DNS. Please visit this Microsoft site for all the supported methods.
This method will only work if ADFS 2.0 is in a farm configuration.
Login to the AD FS 3.0 Server Open Server Manager Click Local Server Click Manage Click Add Roles and Features Click Next Click Next Click Next Select Active Directory Federation Services Click Next Click Next Click Next Click Install Installation starts Install completed. Click Next Select the certificate that we imported in the previous step. Click Next Click Next Click Configure Configuration started Configuration Finished If you navigate to the AD FS Management, you will notice that our Relying Party Trusts does not include Office365.
Don’t close and continue to the next step Click Configure the federation service on this server Select Create the first federation server in a federation farm Click Next Use an account with Domain Admin rights to perform the install. Login to the AD FS 2.0 Server Insert or mount the Windows Server 2012 R2 DVD into the server Run Power Shell as Administrator Navigate to \support\adfs on the Windows Server 2012 R2 DVD Execute the Script .\export-federationconfiguration.ps1 –path c:\adfs_export” This will export the AD FS 2.0 configuration and dump it to a folder called adfs_export on the root of C: drive.