cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
517
Views
0
Helpful
1
Replies

Authentication for a particular ACL

mohsin.khan
Level 3
Level 3


Hi,

I  am trying to implement Authentication for a particular ACL on the ASA,  i.e. whenever that particular ACL is matched, the ASA will authenticate  the user with either local database or AAA server.

I  have seen the document "Configuring AAA for cut-through proxy", but  that says it works only for http, https and ftp etc, whereas in my case i  m looking to authenticate the users trying to access my sql server, for  which i need to match a particular ACL.

regards,

Mohsin

1 Reply 1

Tarik Admani
VIP Alumni
VIP Alumni

Mohsin,

http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/access_fwaaa.html#wp1063502

You will have to setup a virtual http, ftp portal so that when users hit the ACL setup for cut-through proxy for the sql ports, that they will have to fire up a telnet, ftp or http session, enter their credentials and then will be permitted access to the sql server.

Give this a shot and let us know if there is anything else that you need help with.

thanks,

Tarik