12-03-2018 12:25 PM
Dears,
I have network contain ASA and ISE and AD, all this devices integrated together and i need to authentication remote access VPN users from LDAP through ISE but i have an issue.
The main issue that i need all users can change password after first login and notify users before password expired and can change password when password expired.
My ISE Version: 2.2 and 2.4
My ASA Versing: 9.1
12-03-2018 12:51 PM
12-03-2018 01:25 PM
@Surendra- what about EAP-PEAP? I am fairly sure that I implemented an EAP-PEAP solution for a customer where the authentication was their AD server, but we interfaced to it via LDAP.
12-03-2018 01:37 PM
12-03-2018 02:19 PM
oh yes, of course. Sorry. I forgot about that. The LDAP integration to AD was fine, but you're right about PEAP - it doesn't work in that case. I had used it successfully for cases like Sponsor Portal user authentication or for simple PAP type of authentications.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide