https://community.cisco.com/t5/network-access-control/authentication-for-a-particular-acl/m-p/1780936#M232183 <H2><A _jive_internal="true" href="https://community.cisco.com/message/3416515#3416515" target="_blank"><BR /></A></H2><P></P><DIV><P>Hi,</P><P>I&nbsp; am trying to implement Authentication for a particular ACL on the ASA,&nbsp; i.e. whenever that particular ACL is matched, the ASA will authenticate&nbsp; the user with either local database or AAA server. </P><P></P><P>I&nbsp; have seen the document "Configuring AAA for cut-through proxy", but&nbsp; that says it works only for http, https and ftp etc, whereas in my case i&nbsp; m looking to authenticate the users trying to access my sql server, for&nbsp; which i need to match a particular ACL. </P><P></P><P>regards,</P><P>Mohsin</P></DIV> Mon, 11 Mar 2019 01:17:44 GMT mohsin.khan 2019-03-11T01:17:44Z https://community.cisco.com/t5/network-access-control/authentication-for-a-particular-acl/m-p/1780936#M232183 <H2><A _jive_internal="true" href="https://community.cisco.com/message/3416515#3416515" target="_blank"><BR /></A></H2><P></P><DIV><P>Hi,</P><P>I&nbsp; am trying to implement Authentication for a particular ACL on the ASA,&nbsp; i.e. whenever that particular ACL is matched, the ASA will authenticate&nbsp; the user with either local database or AAA server. </P><P></P><P>I&nbsp; have seen the document "Configuring AAA for cut-through proxy", but&nbsp; that says it works only for http, https and ftp etc, whereas in my case i&nbsp; m looking to authenticate the users trying to access my sql server, for&nbsp; which i need to match a particular ACL. </P><P></P><P>regards,</P><P>Mohsin</P></DIV> Mon, 11 Mar 2019 01:17:44 GMT https://community.cisco.com/t5/network-access-control/authentication-for-a-particular-acl/m-p/1780936#M232183 mohsin.khan 2019-03-11T01:17:44Z https://community.cisco.com/t5/network-access-control/authentication-for-a-particular-acl/m-p/1780937#M232197 <HTML><HEAD></HEAD><BODY><P>Mohsin,</P><P></P><P><A class="jive-link-external-small" href="http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/access_fwaaa.html#wp1063502">http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/access_fwaaa.html#wp1063502</A></P><P></P><P>You will have to setup a virtual http, ftp portal so that when users hit the ACL setup for cut-through proxy for the sql ports, that they will have to fire up a telnet, ftp or http session, enter their credentials and then will be permitted access to the sql server.</P><P></P><P>Give this a shot and let us know if there is anything else that you need help with.</P><P></P><P>thanks,</P><P>Tarik</P></BODY></HTML> Wed, 10 Aug 2011 11:09:08 GMT https://community.cisco.com/t5/network-access-control/authentication-for-a-particular-acl/m-p/1780937#M232197 Tarik Admani 2011-08-10T11:09:08Z