https://community.cisco.com/t5/network-access-control/asa-ad-authentication-issue/m-p/743746#M2478 <P> have CIsco ASA 5510 that I used for VPN access. I have it setup to Authenticate against AD for username and password. That all works fine, the problem is if a user enters an incorrcet password in VPN logon, it appears the ASA will try repeatly to auth against AD.....our AD policy is 3 failed attempts and account is locked out. So the end result is if a user enters an incorrect password, their account gets locked out. Anyone have a fix for this?? </P><P></P><P></P><P>Thanks</P><P></P> Fri, 21 Feb 2020 18:18:30 GMT clark.d 2020-02-21T18:18:30Z https://community.cisco.com/t5/network-access-control/asa-ad-authentication-issue/m-p/743746#M2478 <P> have CIsco ASA 5510 that I used for VPN access. I have it setup to Authenticate against AD for username and password. That all works fine, the problem is if a user enters an incorrcet password in VPN logon, it appears the ASA will try repeatly to auth against AD.....our AD policy is 3 failed attempts and account is locked out. So the end result is if a user enters an incorrect password, their account gets locked out. Anyone have a fix for this?? </P><P></P><P></P><P>Thanks</P><P></P> Fri, 21 Feb 2020 18:18:30 GMT https://community.cisco.com/t5/network-access-control/asa-ad-authentication-issue/m-p/743746#M2478 clark.d 2020-02-21T18:18:30Z https://community.cisco.com/t5/network-access-control/asa-ad-authentication-issue/m-p/743747#M2479 <HTML><HEAD></HEAD><BODY><P>hi,</P><P></P><P>I think you configuration is fine as is. I wouldn't want my remote access policy to be weaker than local lan policy.</P><P>my 2 cents</P></BODY></HTML> Tue, 10 Jul 2007 09:34:26 GMT https://community.cisco.com/t5/network-access-control/asa-ad-authentication-issue/m-p/743747#M2479 johnd2310 2007-07-10T09:34:26Z