topic Re: Extended Authentication (Xauth) in Network Access Control

Extended Authentication (Xauth)

dunken_swe — Sun, 10 Mar 2019 21:49:44 GMT

Hi,

Is it possible to use extended authentication (X-auth) to do a double authentication first one at group level against a RADIUS ?based token server and then a new authentication against the Active Directory to be able to map user group -mappings from AD- groups to ACS groups?

The goal is to be able to use a token based password (OTP) for authentication and then be able to authorize the user against the AD.

If there anyway to solve this or a best practice, please let me know.

Thankful for any help or inputs on this

Best regards.

// Dunken

Re: Extended Authentication (Xauth)

jasjsingh — Tue, 07 Nov 2006 18:19:05 GMT

Yes this is possible, let me know the the device you are using to terminate the VPN connections .

Re: Extended Authentication (Xauth)

dunken_swe — Wed, 08 Nov 2006 07:04:13 GMT

Hi, thanks for your reply.

The thought is to use Cisco ASA5020/VPN3030 to handle the request from the incoming VPN-connections.